CVE-2018-16147

Name of the Vulnerable Software and Affected Versions Opsview Monitor versions prior to 5.3.1 Opsview Monitor versions 5.4.x prior to 5.4.2

Description The issue concerns the /settings/api/router endpoint, where the data parameter is vulnerable to Cross-Site Scripting.

Recommendations For versions prior to 5.3.1, update to version 5.3.1 or later. For versions 5.4.x prior to 5.4.2, update to version 5.4.2 or later.