Details
-
Type:
Bug
-
Status: Resolved (View Workflow)
-
Priority:
Critical
-
Resolution: Fixed
-
Affects Version/s: 1.12.9, Meridian-2015.1.0, 17.0.0
-
Fix Version/s: 21.0.0, Meridian-2015.1.8, Meridian-2016.1.8, Meridian-2017.1.1
-
Component/s: Web UI - General
-
Security Level: Default (Default Security Scheme)
-
Labels:
-
Sprint:Horizon - September 27th
Description
For details, see https://mynms.opennms.com/Ticket/Display.html?id=4297
The XSS problems are straightforward to address case-by-case. The CSRF ones will require a full audit of the webapp to address comprehensively.