New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

RXSS vulnerability #2883

gschueler opened this Issue Oct 24, 2017 · 0 comments


None yet
1 participant

gschueler commented Oct 24, 2017

Issue type: Bug report

My Rundeck detail

  • Rundeck version: 2.6.3->2.10.0
  • install type: any

Bug Report

A crafted URL could cause a Reflected XSS vulnerability, due to failure to encode input values in the page output.

@gschueler gschueler added this to the 2.10.x milestone Oct 24, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment