CVE-2016-4847
20.04.2017, 17:59
Cross-site scripting (XSS) vulnerability in site/search.php in OSSEC Web UI before 0.9 allows remote attackers to inject arbitrary web script or HTML by leveraging an unanchored regex.
| Vendor | Product | Version |
|---|---|---|
| ossec | web_ui | 𝑥 ≤ 0.8 |
𝑥
= Vulnerable software versions
References