EPSS
Percentile
37.3%
ScadaBR 1.0CE, and 1.1.x through 1.1.0-RC, has XSS via a request for a nonexistent resource, as demonstrated by the dwr/test/ PATH_INFO.
misteralfa-hack.blogspot.com/2019/09/scadabr-scada-vulnerable-xss.html