Medium severity5.4NVD Advisory· Published Sep 26, 2016· Updated Jun 17, 2026
CVE-2016-6913
CVE-2016-6913
Description
Cross-site scripting (XSS) vulnerability in AlienVault OSSIM before 5.3 and USM before 5.3 allows remote attackers to inject arbitrary web script or HTML via the back parameter to ossim/conf/reload.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- cpe:2.3:a:alienvault:open_source_security_information_and_event_management:*:*:*:*:*:*:*:*Range: <=5.2
- cpe:2.3:a:alienvault:unified_security_management:*:*:*:*:*:*:*:*Range: <=5.2
- Range: <5.3
- Range: <5.3
Patches
Vulnerability mechanics
References
3- seclists.org/fulldisclosure/2016/Aug/122nvdExploitThird Party Advisory
- www.alienvault.com/forums/discussion/7558/nvdVendor Advisory
- www.securityfocus.com/bid/92632nvdVDB Entry
News mentions
0No linked articles in our index yet.