Opensis-Classic Version 8.0 is affected by cross-site...
Moderate severity
Unreviewed
Published
May 24, 2022
to the GitHub Advisory Database
•
Updated Jan 30, 2023
Description
Published by the National Vulnerability Database
Oct 11, 2021
Published to the GitHub Advisory Database
May 24, 2022
Last updated
Jan 30, 2023
Opensis-Classic Version 8.0 is affected by cross-site scripting (XSS). An unauthenticated user can inject and execute JavaScript code through the link_url parameter in Ajax_url_encode.php.
References