You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
A security vulnerability has been identified in Server Templates under System Settings. The identified issue permits an attacker to exploit a stored Cross-Site Scripting (XSS) vulnerability. Through the injection of a malicious payload, the attacker gains the ability to execute arbitrary code.
RISK FACTOR: High
Affected Component – Template name
Procedure for reproducing the issue:
a. Access the System settings interface and navigate to Server Templates, inserted an XSS payload in Template name field, and finally click on Create button.
b. Upon successfully creating server template, clicking on template name to open the template, the XSS payload is triggered.
Below are the affected tabs when victims tries to access which leads to XSS attack