CVE-2016-6319 in Foremanالمعلومات

الملخص

بحسب MITRE

Cross-site scripting (XSS) vulnerability in app/helpers/form_helper.rb in Foreman before 1.12.2, as used by Remote Execution and possibly other plugins, allows remote attackers to inject arbitrary web script or HTML via the label parameter.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

26/07/2016

إفشاء

19/08/2016

الاعتدال

تمت الموافقة

إدخال

VDB-90888

CPE

جاهز

CWE

CWE-79 (مؤكد)

CVSS

6.1 (NVD)

EPSS

0.00734

KEV

لا

النشاطات

منخفض جدًا

القطاع

Telecommunication, Chemical, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6319
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6319
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6319/

التالي ▸نظرة عامة ◂ السابق

Do you need the next level of professionalism?

Upgrade your account now!