Описание
Cross-site scripting (XSS) vulnerability in the API in Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 allows remote attackers to inject arbitrary web script or HTML via the op parameter to nodes/.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.5+bzr1951-0ubuntu1 |
| lucid | DNE | |
| precise | released | 1.2+bzr1373+dfsg-0ubuntu1~12.04.5 |
| quantal | released | 1.2+bzr1373+dfsg-0ubuntu1.2 |
| saucy | released | 1.4+bzr1693+dfsg-0ubuntu2.3 |
| upstream | pending |
Показывать по
10
4.3 Medium
CVSS2
Связанные уязвимости
nvd
почти 12 лет назад
Cross-site scripting (XSS) vulnerability in the API in Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 allows remote attackers to inject arbitrary web script or HTML via the op parameter to nodes/.
github
больше 3 лет назад
Cross-site scripting (XSS) vulnerability in the API in Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 allows remote attackers to inject arbitrary web script or HTML via the op parameter to nodes/.
4.3 Medium
CVSS2