CVE-2023-0867 Information

Description

Multiple stored and reflected cross-site scripting vulnerabilities in webapp jsp pages in multiple versions of OpenNMS Meridian and Horizon could allow an attacker access to confidential session information.

Reference

https://github.com/OpenNMS/opennms/pull/5765