Cross-site scripting (XSS) vulnerability in the search auto-completion functionality in Foreman before 1.4.4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted key name.
Metrics
Affected Vendors & Products
References
History
Mon, 23 Dec 2024 01:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | ||
Vendors & Products |
Redhat satellite Capsule
|
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2017-10-16T18:00:00
Updated: 2024-08-06T09:05:39.260Z
Reserved: 2013-12-03T00:00:00
Link: CVE-2014-0208
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-10-16T18:29:00.203
Modified: 2024-11-21T02:01:38.703
Link: CVE-2014-0208
Redhat