E18-5l251
CVSS:
6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
False Positive:
f
Variants:
2
Year:
2018
Description
This strike exploits a store cross-site scripting vulnerability in Open-AudIT Community 2.2.6.
This vulnerability is due to improper http input filtering the parameter "groups".
By exploiting this vulnerability an attacker could cause arbitrary HTML/script code to be executed by the target user's browser.