Medium severity6.1NVD Advisory· Published Jan 8, 2026· Updated Apr 15, 2026
CVE-2019-25270
CVE-2019-25270
Description
SOCA Access Control System 180612 contains a cross-site scripting vulnerability in the 'senddata' POST parameter of logged_page.php that allows attackers to inject malicious scripts. Attackers can exploit this weakness by sending crafted POST requests to execute arbitrary HTML and script code in a victim's browser session.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: 180612
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.