ManageEngine OpStor availability730.do days Parameter XSS

The remote ManageEngine OpStor install is affected by a cross-site scripting vulnerability. The application does not properly sanitize the 'days' parameter on the 'availability730.do' script. A remote attacker could exploit this by tricking a user into requesting a maliciously crafted URL...