Bug #666: XSS vulnerability - Foreman

Actions

Copy link

Bug #666

closed

XSS vulnerability

Added by Petr Sklenar about 13 years ago. Updated about 8 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Ohad Levy

Category:

Web Interface

Target version:

0.2

Difficulty:

Triaged:

Bugzilla link:

Pull request:

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Description

version of foreman:

commit 80e0157cc452feee0855a64c15391c55ac75610e
Author: Paul Kelly <pikelly@blueyonder.co.uk>
Date:   Sun Feb 13 09:12:39 2011 +0100

    Fixes #623 - incomplete multiple builds commit

    Signed-off-by: Paul Kelly <paul.ian.kelly@googlemail.com>

steps to reproduce:
1. try to save search as : <script>alert('Vulnerable');</script>
and script is run

expected results:
no XSS

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Custom queries

Bug #666

XSS vulnerability

Updated by Ohad Levy about 13 years ago

Updated by Ohad Levy about 13 years ago

Updated by Ohad Levy about 13 years ago

Updated by The Foreman Bot about 8 years ago

Updated by Ohad Levy about 8 years ago