Opmantek Open-AudIT 4.0.1 is affected by cross-site scripting (XSS). When outputting SQL statements for debugging, a maliciously crafted query can trigger an XSS attack. This attack only succeeds if the user is already logged in to Open-AudIT before they click the malicious link.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opmantek open-audit 4.0.1 |