CVE-2021-26828: OpenPLC ScadaBR Unrestricted Upload of File with Dangerous
OpenPLC ScadaBR Unrestricted Upload of File with Dangerous Type Vulnerability. OpenPLC ScadaBR contains an unrestricted upload of file with dangerous type vulnerability that allows remote authenticated users to upload and execute arbitrary JSP files via view_edit.shtm.
- CISA KEV-listed (remediation due 2025-12-24)
- EPSS 78.4% (99.1% percentile)