CVE-2014-3474 in OpenStack Horizon
요약 (영어)
Cross-site scripting (XSS) vulnerability in horizon/static/horizon/js/horizon.instances.js in the Launch Instance menu in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to inject arbitrary web script or HTML via a network name.
예약하다
2014. 05. 14.
공개
2014. 10. 31.
엔트리
VulDB provides additional information and datapoints for this CVE:
| 아이디 | 취약성 | CWE | 악용 | 대책 | CVE |
|---|---|---|---|---|---|
| 72773 | OpenStack Horizon 크로스 사이트 스크립팅 | 79 | 정의되지 않음 | 공식 수정 | CVE-2014-3474 |