CVE-2025-10235 | Scada-LTS up to 2.7.8.1 Reports /reports.shtm Colour cross site scripting

A vulnerability was found in Scada-LTS up to 2.7.8.1. It has been classified as problematic. This issue affects some unknown processing of the file /reports.shtm of the component Reports Module. This manipulation of the argument Colour causes cross site scripting.

This vulnerability appears as CVE-2025-10235. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More