CVE-2025-7729 | Scada-LTS up to 2.7.8.1 usersProfiles.shtm Username cross site scripting

Inserito da Angelo Barbosa | Lug 16, 2025 | CVE

A vulnerability classified as problematic was found in Scada-LTS up to 2.7.8.1. Affected by this vulnerability is an unknown functionality of the file usersProfiles.shtm. The manipulation of the argument Username leads to cross site scripting.

This vulnerability is known as CVE-2025-7729. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this issue and confirmed that it will be fixed in the upcoming release 2.8.0.

CVE-2025-7729 | Scada-LTS up to 2.7.8.1 usersProfiles.shtm Username cross site scripting

Post correlati

CVE-2024-9207 | BuddyPress Docs Plugin up to 2.2.3 on WordPress cross site scripting

CVE-2024-10201 | Wellchoose Administrative Management System unrestricted upload

CVE-2024-10048 | Post Status Notifier Lite Plugin up to 1.11.6 on WordPress page cross site scripting

CVE-2024-26465 | stewdio beep.js URL /beep/Beep.Instrument.js cross site scripting