PT-2025-29898 · Scada-Lts · Scada-Lts

Natan Morette

+1

·

Publicado

2025-07-17

·

Atualizado

2025-07-17

·

CVE-2025-7729

CVSS v2.0

5.5

Média

VetorAV:N/AC:L/Au:S/C:P/I:P/A:N
Name of the Vulnerable Software and Affected Versions Scada-LTS versions up to 2.7.8.1
Description A problematic vulnerability exists in Scada-LTS. The issue affects an unknown functionality of the usersProfiles.shtm file. Manipulation of the Username argument leads to cross-site scripting. The attack can be launched remotely. The exploit has been publicly disclosed.
Recommendations Versions prior to 2.8.0 are affected.

Exploit

Correção

Code Injection

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94CWE-79

Identificadores relacionados

BDU:2025-15297
CVE-2025-7729

Produtos afetados

Scada-Lts