CVE-2016-6556
OpenNMS CVE-2016-6556 affects version 18.0.1 and earlier, due to insufficient filtering of SNMP agent data (sysName/sysContact), enabling stored XSS when web UI data is viewed. The issue was fixed in version 18.0.2 (Sept 20, 2016). No exploitation details are provided in the sources. The related ...