← volver
CVE-2014-0208

CVE-2014-0208

EPSS 0.8%
Cross-site scripting (XSS) vulnerability in the search auto-completion functionality in Foreman before 1.4.4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted key name.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://projects.theforeman.org/issues/5471https://bugzilla.redhat.com/show_bug.cgi?id=1094642https://theforeman.org/security.html#2014-0208