Checksec · Checksec Canopy · CVE-2018-9036
**Name of the Vulnerable Software and Affected Versions**
CheckSec Canopy versions prior to 3.0.7
**Description**
The issue allows for stored XSS attacks via the Login Page Disclaimer, enabling low-privileged users to target higher-privileged users.
**Recommendations**
For versions prior to 3.0.7, update to version 3.0.7 or later to resolve the issue.