SICK PSIRT Acknowledgments

SICK Product Security Incident Response Team

The SICK PSIRT would like to thank the following security researchers for the responsible disclosure of potential security issues related to the webservices or products of SICK. In good cooperation, they helped to improve and further strengthen security for our customers.

2025
Pawan Rawat
Exposure of Sensitive Information to an Unauthorized Actor
2024
Mohd Ali (revengerali)
DNS Zone Takeover, Exposure of Sensitive Information to an Unauthorized Actor
2023
Orion Joshi

URL Redirection to Untrusted Site ('Open Redirect')

Durvesh Kolhe

Improper Restriction of Rendered UI Layers or Frames

Vaibhav Jain

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Satyam Singh

Authorization Bypass Through User-Controlled Key

Kartik Garg

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Jonathan Sarrazin

Uncontrolled Resource Consumption
Use of Hard-coded Credentials
Cleartext Transmission of Sensitive Information
Use of Weak Hash

Balvant Chavda
Uncontrolled Resource Consumption, Use of Hard-coded Credentials, Cleartext Transmission of Sensitive Information, Use of Weak Hash
Abdelrahman Ibrahim Farg
Permissive Cross-domain Policy with Untrusted Domains
2022
Nikhil Rane

Cross-Site Request Forgery

Ritik Jangra

Improperly Controlled Modification of Object Prototype Attributes

Ayansh Sinha

User Interface (UI) Misrepresentation of Critical Information)

freedfr0md3sire

Uncontrolled Search Path Element

kukuruza

Uncontrolled Search Path Element

Fazalur Rahman

Asymmetric Resource Consumption (Amplification)
Bharath Kalyan G
Improper Restriction of Excessive Authentication Attempts
2021
Dhinu Ramachandran

Incorrect Privilege Assignment
Vismit Sudhir Rakhecha(DRUK)

Authentication Bypass by Primary Weakness
Kunal Narsale

Insufficient Session Expiration
2020
Steven Király

Open Redirect
Pritam Mukherjee

Cross-site Scripting
Gaurav Ghule

Clickjacking
Rayen Messaoudi

Stored XSS
Purbasha Ghosh

Stored XSS
Vivek Panday

Clickjacking
Mohsin Khan

Weak Password Recovery Mechanism for Forgotten Password
Chinthala Srinivas

Clickjacking
Rohit Soni

Client-side template injection
Chetan Pathade

Clickjacking
Vikash Kumar

Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')
Akshay Gaikwad

Cross-site Scripting
Vivek Kumar Yadav - 0xd3vil

Improper Access Control
Pooja Karande

Open Redirect
Vraj Shah

Cross-Site Scripting
Pritam Dash

Improper Control of Generation of Code ('Code Injection')
2019
Lacroute Serge

Open Redirect
Pethuraj M

HTTP Request Smuggling
Mustafa Diaa (C0braBaghdad1)

Information Exposure
Vismit Sudhir Rakhecha (Druk)

Insufficient Session Expiration
Darkprince(Sri)

Open Redirect

Contact

SICK PSIRT – cyber security contact for SICK products

psirt@sick.de

Reports can be sent in German or English.

Innovations

Product Portfolio

Accessories

Products by Task

SICK PSIRT Acknowledgments

SICK Product Security Incident Response Team

Contact