A Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Open Build Service allows remote malicious users to store JS code in markdown that is not properly escaped, impacting confidentiality and integrity. This issue affects: Open Build Service versions before 2.10.8.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opensuse open build service |