Vulnerabilities > Opentsdb > Opentsdb > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-05-03 CVE-2023-25827 Cross-site Scripting vulnerability in Opentsdb
Due to insufficient validation of parameters reflected in error messages by the legacy HTTP query API and the logging endpoint, it is possible to inject and execute malicious JavaScript within the browser of a targeted OpenTSDB user.
network
low complexity
opentsdb CWE-79
6.1
6.1
2018-06-29 CVE-2018-13003 Cross-site Scripting vulnerability in Opentsdb 2.3.0
An issue was discovered in OpenTSDB 2.3.0.
network
low complexity
opentsdb CWE-79
6.1
6.1
2018-06-29 CVE-2018-12973 Cross-site Scripting vulnerability in Opentsdb 2.3.0
An issue was discovered in OpenTSDB 2.3.0.
network
low complexity
opentsdb CWE-79
6.1
6.1