268 matches found
EUVD-2022-29208
Malicious code in bioql PyPI...
EUVD-2022-29214
Malicious code in bioql PyPI...
EUVD-2024-27826
Malicious code in bioql PyPI...
PT-2025-34590 · Scada-Lts · Scada-Lts
Name of the Vulnerable Software and Affected Versions: Scada-LTS versions prior to 2.7.8.2 Description: A vulnerability was identified in Scada-LTS up to version 2.7.8.1. The affected element is an unknown function within the /pointHierarchySLTS file of the Folder Handler component. Manipulation ...
CVE-2025-9137
A vulnerability has been found in Scada-LTS 2.7.8.1. This impacts an unknown function of the file scheduledevents.shtm. Such manipulation of the argument alias leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. The...
CVE-2025-9235
A flaw has been found in Scada-LTS up to 2.7.8.1. The impacted element is an unknown function of the file compoundevents.shtm. This manipulation of the argument Name causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used...
CVE-2025-9234
A vulnerability was detected in Scada-LTS up to 2.7.8.1. The affected element is an unknown function of the file maintenanceevents.shtm. The manipulation of the argument Alias results in cross site scripting. The attack can be executed remotely. The exploit is now public and may be used...
CVE-2025-9234 Scada-LTS maintenance_events.shtm cross site scripting
A vulnerability was detected in Scada-LTS up to 2.7.8.1. The affected element is an unknown function of the file maintenanceevents.shtm. The manipulation of the argument Alias results in cross site scripting. The attack can be executed remotely. The exploit is now public and may be used...
CVE-2025-9234
The CVE-2025-9234 issue affects Scada-LTS prior to 2.7.8.2. The vulnerability is a cross-site scripting (XSS) flaw arising from improper handling of the Alias parameter in maintenance_events.shtm, allowing remote attacker-controlled input to be executed in users’ browsers. Multiple sources confir...
CVE-2025-9233
A security vulnerability has been detected in Scada-LTS up to 2.7.8.1. Impacted is an unknown function of the file viewedit.shtm. The manipulation of the argument Name leads to cross site scripting. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be...
CVE-2025-9233 Scada-LTS view_edit.shtm cross site scripting
A security vulnerability has been detected in Scada-LTS up to 2.7.8.1. Impacted is an unknown function of the file viewedit.shtm. The manipulation of the argument Name leads to cross site scripting. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be...
CVE-2025-9145
A security vulnerability has been detected in Scada-LTS 2.7.8.1. This issue affects some unknown processing of the file viewedit.shtm of the component SVG File Handler. Such manipulation of the argument backgroundImageMP leads to cross site scripting. The attack can be launched remotely. The...
CVE-2025-9145 Scada-LTS SVG File view_edit.shtm cross site scripting
A security vulnerability has been detected in Scada-LTS 2.7.8.1. This issue affects some unknown processing of the file viewedit.shtm of the component SVG File Handler. Such manipulation of the argument backgroundImageMP leads to cross site scripting. The attack can be launched remotely. The...
CVE-2025-9139
A vulnerability was determined in Scada-LTS 2.7.8.1. Affected by this vulnerability is an unknown functionality of the file /Scada-LTS/dwr/call/plaincall/WatchListDwr.init.dwr. Executing manipulation can lead to information disclosure. The attack may be performed from a remote location. The explo...
CVE-2025-9139 Scada-LTS WatchListDwr.init.dwr information disclosure
A vulnerability was determined in Scada-LTS 2.7.8.1. Affected by this vulnerability is an unknown functionality of the file /Scada-LTS/dwr/call/plaincall/WatchListDwr.init.dwr. Executing manipulation can lead to information disclosure. The attack may be performed from a remote location. The explo...
CVE-2025-9138
Summary of CVE-2025-9138 (Scada-LTS 2.7.8.1) : A cross-site scripting vulnerability exists in the file path pointHierarchy/new/ where manipulation of the Title argument can trigger XSS. The issue appears to be exploitable remotely and the exploit has been made public. Public documents consistentl...
PT-2025-33723 · Scada-Lts · Scada-Lts
Name of the Vulnerable Software and Affected Versions: Scada-LTS version 2.7.8.1 Description: A cross-site scripting issue exists due to manipulation of the Title argument within the file pointHierarchy/new/. The attack can be carried out remotely. The vendor states that exploitation likely...
PT-2025-33742 · Scada-Lts · Scada-Lts
Name of the Vulnerable Software and Affected Versions: Scada-LTS version 2.7.8.1 Description: A weakness exists in Scada-LTS 2.7.8.1 related to the manipulation of the Name argument in the publisher edit.shtm file, leading to cross-site scripting. The attack can be initiated remotely, and the...
CVE-2025-8743
A vulnerability classified as problematic has been found in Scada-LTS up to 2.7.8.1. This affects an unknown part of the file /datasourceedit.shtm of the component Virtual Data Source Property Handler. The manipulation of the argument Name leads to cross site scripting. It is possible to initiate...
CVE-2025-8743
CVE-2025-8743 affects Scada-LTS up to 2.7.8.1. The vulnerability resides in the Virtual Data Source Property Handler, specifically the /data_source_edit.shtm endpoint, where manipulation of the Name parameter enables cross-site scripting. The issue can be exploited remotely and the exploit has be...