OpenNMS Meridian and Horizon vulnerable to Cross-site Scripting
Moderate severity
GitHub Reviewed
Published
Feb 23, 2023
to the GitHub Advisory Database
•
Updated Mar 8, 2023
Description
Published by the National Vulnerability Database
Feb 23, 2023
Published to the GitHub Advisory Database
Feb 23, 2023
Last updated
Mar 8, 2023
Reviewed
Mar 8, 2023
Reflected cross-site scripting in graph results in multiple versions of OpenNMS Meridian and Horizon could allow an attacker access to steal session cookies.
References