CVE-2022-48012

Name of the Vulnerable Software and Affected Versions Opencats version 0.9.7

Description A reflected cross-site scripting (XSS) issue was found in Opencats via the component "/opencats/index.php?m=settings&a=ajax tags upd". This allows for potential XSS attacks.

Recommendations For Opencats version 0.9.7, consider disabling access to the "/opencats/index.php?m=settings&a=ajax tags upd" endpoint until a patch is available. Restrict input to this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.