Vulnerabilities > Open Audit > High

DATE CVE VULNERABILITY TITLE RISK
2018-03-25 CVE-2018-8979 Cross-site Scripting vulnerability in Open-Audit 2.1
Open-AudIT Professional 2.1 has CSRF, as demonstrated by modifying a user account or inserting XSS sequences via the credentials URI.
network
low complexity
open-audit CWE-79
8.8
8.8