CVE-2025-9234: Cross Site Scripting in Scada-LTS
A vulnerability was detected in Scada-LTS up to 2.7.8.1. The affected element is an unknown function of the file maintenance_events.shtm. The manipulation of the argument Alias results in cross site scripting. The attack can be executed remotely. The exploit is now public and may be used.
CVE-2025-9234: Cross Site Scripting in Scada-LTS
Description
A vulnerability was detected in Scada-LTS up to 2.7.8.1. The affected element is an unknown function of the file maintenance_events.shtm. The manipulation of the argument Alias results in cross site scripting. The attack can be executed remotely. The exploit is now public and may be used.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-08-20T10:51:58.077Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 68a6033dad5a09ad00074c99
Added to database: 8/20/2025, 5:17:49 PM
Last updated: 8/20/2025, 5:17:49 PM
Views: 1
Related Threats
CVE-2025-9235: Cross Site Scripting in Scada-LTS
MediumCVE-2025-46856: Cross-site Scripting (DOM-based XSS) (CWE-79) in Adobe Adobe Experience Manager
MediumCVE-2025-46852: Cross-site Scripting (Stored XSS) (CWE-79) in Adobe Adobe Experience Manager
MediumCVE-2025-46849: Cross-site Scripting (Stored XSS) (CWE-79) in Adobe Adobe Experience Manager
MediumCVE-2025-47054: Cross-site Scripting (DOM-based XSS) (CWE-79) in Adobe Adobe Experience Manager
MediumActions
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.