CVE-2025-9143
BaseFortify
Publication date: 2025-08-19
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| scada-lts | scada-lts | 2.7.8.1 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
| CWE-94 | The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-9143 is a stored Cross-Site Scripting (XSS) vulnerability in Scada-LTS version 2.7.8.1, specifically in the mailing_lists.shtm file. It occurs because the application does not properly validate or sanitize user inputs in the parameters name, userList, and address. Attackers can inject malicious scripts into these parameters, which are then stored on the server and executed automatically in users' browsers when they access the affected page. This allows remote attackers to run arbitrary scripts via manipulated input fields. [1, 2]
How can this vulnerability impact me? :
This vulnerability can lead to session cookie theft, browser hijacking, credential theft, malware delivery, unauthorized access to sensitive information, website defacement, user misdirection, and reputational damage to affected businesses. Essentially, attackers can exploit this flaw to compromise user accounts and the integrity of the affected web application. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by testing the affected parameters (name, userList, address) in the mailing_lists.shtm page for stored cross-site scripting (XSS). You can attempt to inject a payload such as `<img src=x onerror=alert(40)>` into these parameters and observe if the script executes when the page is accessed. Automated scanning tools that detect XSS vulnerabilities can also be used. Specific commands are not provided in the resources. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include avoiding use of the affected Scada-LTS 2.7.8.1 component or replacing it with an alternative product, as no known mitigations or countermeasures have been documented. Additionally, restricting user input to the affected parameters and applying input validation or sanitization where possible may help reduce risk until a patch or fix is available. [2]