Cross-Site Scripting Vulnerability in Astun Technology iShare Maps
CVE-2025-5377

5.3MEDIUM

Key Information:

Vendor: Astun Technology
Status: Ishare Maps
Vendor: CVE Published:; 31 May 2025

🔔 Create Astun Technology Vulnerability Alert

What is CVE-2025-5377?

A cross-site scripting (XSS) vulnerability has been identified in Astun Technology's iShare Maps version 5.4.0. This security issue involves the manipulation of the 'Zoom' argument within the file 'historic1.asp.' An attacker, leveraging this vulnerability, can execute malicious scripts in the context of a user's browser, potentially leading to data theft or unauthorized actions. The exploit can be executed remotely, exposing users to risks. Despite early notification regarding this issue, the vendor has not provided a response.