CVE

CVE-2016-6319 (foreman)

CVE-2016-6319 (foreman)

Cross-site scripting (XSS) vulnerability in app/helpers/form_helper.rb in Foreman before 1.12.2, as used by Remote Execution and possibly other plugins, allows remote attackers to inject arbitrary web script or HTML via the label parameter.

Source: CVE-2016-6319 (foreman)

Exit mobile version