{"id":"CVE-2018-13003","details":"An issue was discovered in OpenTSDB 2.3.0. There is XSS in parameter 'type' to the /suggest URI.","aliases":["GHSA-86vm-8m4p-6263"],"modified":"2026-03-14T09:27:32.950341Z","published":"2018-06-29T14:29:00.340Z","references":[{"type":"ADVISORY","url":"https://github.com/OpenTSDB/opentsdb/issues/1241"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/opentsdb/opentsdb","events":[{"introduced":"0"},{"last_affected":"cac608ad7bfaf6315fd2319a8af37da307abdeb9"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.3.0"}]}}],"versions":["2.1.1","v1.0.0","v1.1.0","v2.0.0","v2.0.0RC1","v2.0.0RC2","v2.0.0RC3","v2.0.1","v2.1.0","v2.1.0RC1","v2.1.0RC2","v2.1.2","v2.1.3","v2.1.4","v2.2.0","v2.2.0RC1","v2.2.0RC2","v2.2.0RC3","v2.2.1","v2.2.2","v2.3.0","v2.3.0RC1","v2.3.0RC2"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-13003.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}