| عنوان | ScadaBR Scada-LTS 2.7.8.1 XSS |
|---|
| الوصف | A vulnerability was found in Scada-LTS up to version 2.7.8.1. It has been classified as a cross-site scripting (XSS) issue. This affects the Data Point Edit module, specifically the Text Renderer properties (suffix) field. By inserting crafted input, an attacker can store arbitrary script code which is later executed in the context of a victim’s browser session. Successful exploitation may allow for session hijacking, defacement, or further client-side attacks against SCADA operators. |
|---|
| المصدر | ⚠️ https://medium.com/@warlleyfreire |
|---|
| المستخدم | 0x5ea3o1f (UID 89513) |
|---|
| ارسال | 26/08/2025 04:41 PM (10 أشهر منذ) |
|---|
| الاعتدال | 10/09/2025 03:53 PM (15 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 323503 [Scada-LTS حتى 2.7.8.1 Data Point Edit /data_point_edit.shtm Text Renderer properties البرمجة عبر المواقع] |
|---|
| النقاط | 17 |
|---|