CVE Details
Basic Information
| Title | Astun Technology iShare Maps historic1.asp cross site scripting |
|---|---|
| Type | cve |
| Published | 2025-05-31T12:31:04.281Z |
| Last Seen |
Product Information
| Vendor | Astun Technology |
|---|---|
| Product | iShare Maps |
| Version | 5.4.0 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A cross-site scripting vulnerability was found in Astun Technology iShare Maps 5.4.0, specifically in the historic1.asp file. The vulnerability is triggered by manipulating the Zoom argument, allowing attackers to inject malicious scripts. The vendor was notified but did not respond. The exploit is publicly available and can be used remotely. |
|---|---|
| AI Severity | Medium |
| Vendor | Astun Technology |
| Product | iShare Maps |
| Affected Version | 5.4.0 |
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-79, CWE-94 |
| Bulletin Family | |
| Source Data | Astun Technology iShare Maps 5.4.0 |
Source Information
| Source Data | Astun Technology iShare Maps 5.4.0 |
|---|---|
| Source Link |
Description
A vulnerability was found in Astun Technology iShare Maps 5.4.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file historic1.asp. The manipulation of the argument Zoom leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Score Summary
Base Score: 5.3 (MEDIUM)