CVE-2021-3333

Published: 2021-02-05T14:15Z

Last Modified: 2024-11-21T06:21Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Opmantek Open-AudIT 4.0.1 is affected by cross-site scripting (XSS). When outputting SQL statements for debugging, a maliciously crafted query can trigger an XSS attack. This attack only succeeds if the user is already logged in to Open-AudIT before they click the malicious link. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt