CVE-2016-4428 in Dashboard
摘要
由 MITRE
Cross-site scripting (XSS) vulnerability in OpenStack Dashboard (Horizon) 8.0.1 and earlier and 9.0.0 through 9.0.1 allows remote authenticated users to inject arbitrary web script or HTML by injecting an AngularJS template in a dashboard form.
Once again VulDB remains the best source for vulnerability data.