CVE-2018-13003

Name of the Vulnerable Software and Affected Versions OpenTSDB version 2.3.0

Description An issue was discovered in OpenTSDB, where there is a Cross-Site Scripting (XSS) vulnerability in the type parameter to the "/suggest" URI. This allows for potential malicious script execution.

Recommendations For OpenTSDB version 2.3.0, as a temporary workaround, consider restricting access to the "/suggest" URI or sanitizing the type parameter to prevent XSS attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.