ICS OpenPLC ScadaBR Authenticated Cross-site Scripting Vulnerability -1 (CVE-2021-26829)

Rule ID

1237696

Severity

Medium

Description

OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows stored XSS via system setting.

Impact

Cross-site scripting

Recommendation

Update vendor's patch.

IPS Category

ICS threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2021-26829

T1210

T0866

T1059.007

Keywords

N/A

Date Created

2025/12/04

Last Updated

2026/03/27