CVE-2018-16607
Open-AudIT Professional Edition 2.2.7 contains a Cross-Site Scripting (XSS) vulnerability in the Orgs Page, exploitable via the Orgs name field. The issue allows remote attackers to inject arbitrary web script/HTML. Affected software is Open-AudIT Professional Edition (2.2.7); the root cause is r...