TOTOLINK N300RB 8.54 - Command Execution

ABB Cylon Aspect 3.08.02 (ethernetUpdate.php) - Authenticated Path Traversal

ABB Cylon Aspect 3.08.02 (deployStart.php) - Unauthenticated Command Execution

ABB Cylon Aspect 3.08.03 (webServerDeviceLabelUpdate.php) - File Write DoS

ABB Cylon Aspect 4.00.00 (factorySaved.php) - Unauthenticated XSS

ABB Cylon Aspect 4.00.00 (factorySetSerialNum.php) - Remote Code Execution

ABB Cylon Aspect 3.08.02 - Cross-Site Request Forgery (CSRF)

ABB Cylon Aspect 3.08.02 - Cookie User Password Disclosure

ABB Cylon Aspect 3.07.02 (userManagement.php) - Weak Password Policy

ABB Cylon Aspect 3.08.03 (CookieDB) - SQL Injection

ABB Cylon Aspect 3.08.02 (webServerUpdate.php) - Input Validation Config Poisoning

ABB Cylon Aspect 3.08.02 (escDevicesUpdate.php) - Denial of Service (DOS)

ABB Cylon Aspect 3.08.02 (bbmdUpdate.php) - Remote Code Execution

ABB Cylon Aspect 3.08.02 (uploadDb.php) - Remote Code Execution

ABB Cylon Aspect 3.08.02 (licenseUpload.php) - Stored Cross-Site Scripting

ABB Cylon Aspect 3.08.02 (licenseServerUpdate.php) - Stored Cross-Site Scripting