CVE-2023-0868
OpenNMS Meridian and Horizon are affected by a reflected cross-site scripting (XSS) vulnerability in graph results that can allow an attacker to steal session cookies. From the connected PT-2023-16572 advisory: OpenNMS Meridian versions prior to 2023.1.0 and OpenNMS Horizon versions prior to 31.0...