Cross-site scripting (XSS) vulnerability in AlienVault OSSIM before 5.3 and USM before 5.3 allows remote attackers to inject arbitrary web script or HTML via the back parameter to ossim/conf/reload.php.
CPE | Name | Operator | Version |
---|---|---|---|
open_source_security_information_and_event_management | le | 5.2 | |
unified_security_management | le | 5.2 |