Cross-site scripting (XSS) vulnerability in the API in Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 allows remote malicious users to inject arbitrary web script or HTML via the op parameter to nodes/.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ubuntu metal as a service 1.2 |
||
ubuntu metal as a service 1.4 |