Vulnerabilities > Ossec > WEB UI
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-20 | CVE-2016-4847 | Cross-site Scripting vulnerability in Ossec web UI 0.3/0.8 Cross-site scripting (XSS) vulnerability in site/search.php in OSSEC Web UI before 0.9 allows remote attackers to inject arbitrary web script or HTML by leveraging an unanchored regex. | 6.1 |