Multiple cross-site scripting (XSS) vulnerabilities in information popups in Foreman before 1.10.0 allow remote attackers to inject arbitrary web script or HTML via (1) global parameters, (2) smart class parameters, or (3) smart variables in the (a) host or (b) hostgroup edit forms.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2015-12-17T19:00:00
Updated: 2016-12-01T15:57:02
Reserved: 2015-09-29T00:00:00
Link: CVE-2015-7518
JSON object: View
NVD Information
Status : Modified
Published: 2015-12-17T19:59:03.620
Modified: 2023-02-12T23:15:36.017
Link: CVE-2015-7518
JSON object: View
Redhat Information
No data.
CWE