100 matches found
CVE-2026-9646 ScadaBR Unauthenticated Reflected Cross-Site Scripting
A reflected cross-site scripting issue exists in URL handling...
EUVD-2017-14270
Malware in sbrugna...
EUVD-2020-28671
Malware in sbrugna...
EUVD-2020-28672
Malware in sbrugna...
EUVD-2017-18876
Malware in sbrugna...
EUVD-2021-27166
Malware in sbrugna...
EUVD-2013-2763
Malware in sbrugna...
EUVD-2017-15088
Malware in sbrugna...
EUVD-2024-27402
Malicious code in bioql PyPI...
CVE-2025-9404 Scada-LTS Folder pointHierarchySLTS cross site scripting
A vulnerability was identified in Scada-LTS up to 2.7.8.1. The affected element is an unknown function of the file /pointHierarchySLTS of the component Folder Handler. The manipulation of the argument Title leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...
CVE-2025-9144
A weakness has been identified in Scada-LTS 2.7.8.1. This vulnerability affects unknown code of the file publisheredit.shtm. This manipulation of the argument Name causes cross site scripting. The attack can be initiated remotely. The exploit has been made available to the public and could be...
CVE-2025-9235
CVE-2025-9235 affects Scada-LTS up to 2.7.8.1, where manipulation of the Name parameter in the file compound_events.shtm causes cross-site scripting. The vulnerability can be exploited remotely, and an exploit/public PoC has been published. Root cause: improper handling of the Name argument in th...
CVE-2025-9233
CVE-2025-9233 affects Scada-LTS up to version 2.7.8.1. The vulnerability is a stored/ reflected cross-site scripting flaw in the view_edit.shtm file, triggered by manipulating the Name parameter in an unspecified function. Remote exploitation is possible, and public PoCs/exploit details have circ...
CVE-2025-9143 Scada-LTS mailing_lists.shtm cross site scripting
A security flaw has been discovered in Scada-LTS 2.7.8.1. This affects an unknown part of the file mailinglists.shtm. The manipulation of the argument name/userList/address results in cross site scripting. It is possible to launch the attack remotely. The exploit has been released to the public a...
CVE-2012-4358
Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 do not validate the return value of the realloc function, which allows remote attackers to cause a denial of service invalid 0x00 write operation and daemon crash or possibly have unspecified other impact via a...
CVE-2012-4357
Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 might allow remote attackers to execute arbitrary code by referencing, within a port-46824 TCP packet, an invalid file-pointer index that leads to execution of an EnterCriticalSection code blo...
CVE-2024-21852
In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can supply a malicious configuration file by utilizing a Zip Slip vulnerability in the unpacking routine to achieve remote code execution...
Advantech WebAccess/SCADA Arbitrary File Upload Vulnerability
Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. An arbitrary file upload vulnerability exists i...
Advantech WebAccess/SCADA Arbitrary File Overwrite Vulnerability
Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. An arbitrary file overwrite vulnerability exist...
Advantech WebAccess/SCADA Arbitrary File Upload Vulnerability (CNVD-2024-15541)
Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. An arbitrary file upload vulnerability exists i...