CVE-2025-5377

Name of the Vulnerable Software and Affected Versions Astun Technology iShare Maps version 5.4.0

Description A issue was found in the file historic1.asp, where the manipulation of the Zoom argument leads to cross site scripting. This can be exploited remotely. The vendor was contacted about this disclosure but did not respond.

Recommendations For Astun Technology iShare Maps version 5.4.0, as a temporary workaround, consider restricting access to the historic1.asp file until a patch is available. Avoid using the Zoom argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.