Cross-Site Scripting Vulnerability in Control Microsystems ClearSCADA
CVE-2011-3144
Currently unrated
What is CVE-2011-3144?
A cross-site scripting (XSS) vulnerability exists in Control Microsystems' ClearSCADA versions 2005, 2007, and 2009 prior to R2.3, as well as in SCX versions prior to 67 R4.5 and 68 R3.9. This enables remote attackers to inject arbitrary web scripts or HTML into affected systems through unspecified vectors, thus posing serious security risks to users by allowing the execution of malicious scripts.