Cross-site scripting (XSS) vulnerability in header.php in Ganglia Web 3.5.8 and 3.5.10 allows remote malicious users to inject arbitrary web script or HTML via the host_regex parameter to the default URI, which is processed by get_context.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ganglia ganglia-web 3.5.8 |
||
ganglia ganglia-web 3.5.10 |