Описание
Cross-site scripting (XSS) vulnerability in the "Shares" overview in Openstack Manila before 2.5.1 allows remote authenticated users to inject arbitrary web script or HTML via the Metadata field in the "Create Share" form.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 2.5.1-0 |
| cosmic | not-affected | 2.5.1-0 |
| devel | not-affected | 2.5.1-0 |
| disco | not-affected | 2.5.1-0 |
| eoan | not-affected | 2.5.1-0 |
| esm-apps/bionic | not-affected | 2.5.1-0 |
| esm-apps/focal | not-affected | 2.5.1-0 |
| esm-apps/jammy | not-affected | 2.5.1-0 |
| esm-apps/noble | not-affected | 2.5.1-0 |
Показывать по
EPSS
3.5 Low
CVSS2
5.4 Medium
CVSS3
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in the "Shares" overview in Openstack Manila before 2.5.1 allows remote authenticated users to inject arbitrary web script or HTML via the Metadata field in the "Create Share" form.
Cross-site scripting (XSS) vulnerability in the "Shares" overview in Openstack Manila before 2.5.1 allows remote authenticated users to inject arbitrary web script or HTML via the Metadata field in the "Create Share" form.
Cross-site scripting (XSS) vulnerability in the "Shares" overview in O ...
Openstack Manila Persistent XSS in Metadata field
EPSS
3.5 Low
CVSS2
5.4 Medium
CVSS3