Full title: Lupusec XT2 Plus Main Panel Shared Secrets / Secret Disclosure / CSRF Vulnerabilities 
Category: web applications
Platform: hardware
Lupusec XT2 Plus Main Panel with firmware 0.0.2.19E suffers from shared private keys for SSL certificates, root passwords derived from the MAC address, information disclosure, and cross site request forgery vulnerabilities.

# 0day.today @ http://0day.today/