OpenStack Horizon Cross-site Scripting (XSS)
Moderate severity
GitHub Reviewed
Published
May 14, 2022
to the GitHub Advisory Database
•
Updated May 14, 2024
Package
Affected versions
>= 9.0, < 9.1.2
>= 10.0, < 10.0.3
>= 11.0.0, < 11.0.1
Patched versions
9.1.2
10.0.3
11.0.1
Description
Published by the National Vulnerability Database
Apr 3, 2017
Published to the GitHub Advisory Database
May 14, 2022
Last updated
May 14, 2024
Reviewed
May 14, 2024
OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.
References