Multiple cross-site scripting (XSS) vulnerabilities in the host YAML view in Foreman prior to 1.4.5 and 1.5.x prior to 1.5.1 allow remote malicious users to inject arbitrary web script or HTML via a parameter (1) name or (2) value related to the host.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
theforeman foreman 1.4.0 |
||
theforeman foreman 1.5.0 |
||
theforeman foreman 1.4.3 |
||
theforeman foreman 1.4.1 |
||
theforeman foreman |
||
theforeman foreman 1.4.2 |