CVE-2025-14849 | Advantech WebAccess/SCADA 9.2.1 unrestricted upload

December 18, 2025 Yanac

A vulnerability was found in Advantech WebAccess and SCADA 9.2.1. It has been declared as critical. This issue affects some unknown processing. Executing manipulation can lead to unrestricted upload.

This vulnerability is tracked as CVE-2025-14849. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-67163 | Simple Machines Forum 2.1.6 Forum Name cross site scripting (GHSA-p2xm-x9fp-5r7x)
CVE-2020-36891 | Kentico Xperience up to 12.0.49 Content-Type cross site scripting