0.001 Low
EPSS
Percentile
34.4%
opentsdb is vulnerable to cross-site scripting (XSS) attacks. A malicious user can inject and execute arbitrary Javascript through the json parameter with the /q URL.
json
/q
github.com/OpenTSDB/opentsdb/issues/1240