Conprosys Hmi System

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-34081 HIGH This Week

The Contec Co.,Ltd. CONPROSYS HMI System (CHS) exposes a PHP phpinfo() debug page to unauthenticated users that may contain sensitive data useful for an attacker.This issue affects CONPROSYS HMI System (CHS): before 3.7.7.

PHP Information Disclosure Conprosys Hmi System
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-34080 MEDIUM This Month

The Contec Co.,Ltd. CONPROSYS HMI System (CHS) is vulnerable to Cross-Site Scripting (XSS) in the getqsetting.php functionality that could allow reflected execution of scripts in the browser on interaction.This issue affects CONPROSYS HMI System (CHS): before 3.7.7.

PHP XSS Conprosys Hmi System
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-34081
EPSS 0% CVSS 7.5
HIGH This Week

The Contec Co.,Ltd. CONPROSYS HMI System (CHS) exposes a PHP phpinfo() debug page to unauthenticated users that may contain sensitive data useful for an attacker.This issue affects CONPROSYS HMI System (CHS): before 3.7.7.

PHP Information Disclosure Conprosys Hmi System
NVD
CVE-2025-34080
EPSS 0% CVSS 6.1
MEDIUM This Month

The Contec Co.,Ltd. CONPROSYS HMI System (CHS) is vulnerable to Cross-Site Scripting (XSS) in the getqsetting.php functionality that could allow reflected execution of scripts in the browser on interaction.This issue affects CONPROSYS HMI System (CHS): before 3.7.7.

PHP XSS Conprosys Hmi System
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy