Cross-site scripting (XSS) vulnerability in Openconf 1.04, and possibly other versions before 1.10, allows remote attackers to inject arbitrary HTML and web script via the paper title.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| zakon_group | openconf | 1.0_rc1 |
| zakon_group | openconf | 1.01 |
| zakon_group | openconf | 1.0_beta1 |
| zakon_group | openconf | 1.02 |
| zakon_group | openconf | 1.0_beta2 |
| zakon_group | openconf | 1.03 |
| zakon_group | openconf | 1.04 |
| zakon_group | openconf | 1.0_rc2 |
| zakon_group | openconf | 1.0 |