CVE-2025-9235
CVE-2025-9235 affects Scada-LTS up to 2.7.8.1, where manipulation of the Name parameter in the file compound_events.shtm causes cross-site scripting. The vulnerability can be exploited remotely, and an exploit/public PoC has been published. Root cause: improper handling of the Name argument in th...