Diego Di Nardo

Name of the Vulnerable Software and Affected Versions: Racktables version 0.21.2 Description: The issue allows an attacker to inject arbitrary web script or HTML via the `op` parameter in the redirect module. This enables the attacker to perform Cross Site Scripting (XSS) attacks. Recommendations: For Racktables version 0.21.2, update to a version that fixes the Cross Site Scripting (XSS) issue in the redirect module, or as a temporary workaround, consider restricting access to the redirect module to minimize the risk of exploitation.