CVE-2015-10074

Name of the Vulnerable Software and Affected Versions OpenSeaMap online chart version 1.2

Description A vulnerability was found in the function init of the file index.php. The manipulation of the argument mtext leads to cross site scripting. It is possible to launch the attack remotely.

Recommendations For OpenSeaMap online chart version 1.2, upgrade to version staging to address this issue. As a temporary workaround, consider restricting access to the init function in the index.php file until the upgrade is applied. Additionally, avoid using the mtext argument in the affected component until the issue is resolved.