CVE-2021-44916
- Source
- https://cve.org/CVERecord?id=CVE-2021-44916
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-44916.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-44916
- Published
- 2021-12-20T12:15:07.487Z
- Modified
- 2026-03-14T11:17:50.238758Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Opmantek Open-AudIT Community 4.2.0 (Fixed in 4.3.0) is affected by a Cross Site Scripting (XSS) vulnerability. If a bad value is passed to the routine via a URL, malicious JavaScript code can be executed in the victim's browser.
- References
-
- https://community.opmantek.com/display/OA/Release+Notes+for+Open-AudIT+v4.3.0
- https://community.opmantek.com/display/OA/Errata+-+4.2.0+and+earlier+Javascript+vulnerability
- https://github.com/Opmantek/open-audit/commit/e37b64bbd0219f03cb71cc1cd5bb010166a2b846
- http://packetstormsecurity.com/files/165502/Open-AudIT-Community-4.2.0-Cross-Site-Scripting.html
Affected packages
Git / github.com/opmantek/open-audit
Affected versions
Open-AudIT_1.*
Open-AudIT_1.12
Open-AudIT_1.12.2
Open-AudIT_1.12.2_1
Open-AudIT_1.12.4
Open-AudIT_1.12.6
Open-AudIT_1.12.8
Open-AudIT_1.12.8.1
Open-AudIT_1.12.8.2
Open-AudIT_1.14.2
Open-AudIT_1.8.2
Open-AudIT_2.*
Open-AudIT_2.0.1
Open-AudIT_2.0.1-1
Open-AudIT_2.0.1-2
Open-AudIT_2.0.10
Open-AudIT_2.0.11
Open-AudIT_2.0.2
Open-AudIT_2.0.2-1
Open-AudIT_2.0.4
Open-AudIT_2.0.6
Open-AudIT_2.0.6_beta
Open-AudIT_2.0.8
Open-AudIT_2.1
Open-AudIT_2.2.0
Open-AudIT_2.2.1
Open-AudIT_2.2.2
Open-AudIT_2.2.3
Open-AudIT_2.2.4
Open-AudIT_2.2.5
Open-AudIT_2.2.6
Open-AudIT_2.2.7
Open-AudIT_2.3.0
Open-AudIT_2.3.1
Open-AudIT_2.3.2
Open-AudIT_2.3.3
Open-AudIT_3.*
Open-AudIT_3.0.0
Open-AudIT_3.0.0_windows
Open-AudIT_3.0.1
Open-AudIT_3.0.2
Open-AudIT_3.1.0
Open-AudIT_3.1.1
Open-AudIT_3.1.2
Open-AudIT_3.2.0
Open-AudIT_3.2.1
Open-AudIT_3.2.2
Open-AudIT_3.3.0
Open-AudIT_3.3.1
Open-AudIT_3.3.2
Open-AudIT_3.4.0
Open-AudIT_3.4.0-r2
Open-AudIT_3.5.0
Open-AudIT_3.5.1
Open-AudIT_3.5.2
Open-AudIT_4.*
Open-AudIT_4.1.1
Open-AudIT_4.1.2
Open-AudIT_4.2.0