Vulnerabilities > Blaauwproducts > Remote Kiln Control > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-05-07 CVE-2019-18869 Unspecified vulnerability in Blaauwproducts Remote Kiln Control 3.0.0
Leftover Debug Code in Blaauw Remote Kiln Control through v3.00r4 allows a user to execute arbitrary php code via /default.php?idx=17.
network
low complexity
blaauwproducts
critical
 9.8
9.8
2020-05-07 CVE-2019-18868 Insufficiently Protected Credentials vulnerability in Blaauwproducts Remote Kiln Control 3.0.0
Blaauw Remote Kiln Control through v3.00r4 allows an unauthenticated attacker to access MySQL credentials in cleartext in /engine/db.inc, /lang/nl.bak, or /lang/en.bak.
network
low complexity
blaauwproducts CWE-522
critical
 9.8
9.8