The eSolar Light Photovoltaic System Monitor is a SCADA product that allows solar power stations to simultaneously monitor different components of photovoltaic arrays, such as photovoltaic inverters, energy meters, gauges
The software running on the affected devices is vulnerable to multiple security issues, that allow unauthenticated remote attackers to gain administrative access and execute arbitrary commands.
The multiple vulnerabilities reported were:
• Hard-coded Credentials
• SQL Injection
• Command Execution
• Broken Session Enforcement
You can Get Exploit here. The researchers released the vulnerability without coordination with either the vendor or ICS-CERT. The vendor is aware of the report and ICS-CERT asked the vendor to confirm the vulnerability and identify mitigation.