Description
Cross-site scripting (XSS) vulnerability in service/graph_html.php in the administrator panel in LiteSpeed Web Server 4.1.11 allows remote attackers to inject arbitrary web script or HTML via the gtitle parameter.
Remediation
References
Related Vulnerabilities
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-48008)
OpenSSL Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-3207)
OpenSSL Missing Encryption of Sensitive Data Vulnerability (CVE-2019-1547)
WordPress Plugin Simple Membership SQL Injection (4.0.3)
WordPress 4.2.x Same Origin Method Execution (SOME) Vulnerability (4.2 - 4.2.7)