Cross-site scripting (XSS) vulnerability in crowbar_framework/app/views/support/index.html.haml in the Crowbar barclamp in Crowbar, possibly 1.4 and earlier, allows remote attackers to inject arbitrary web script or HTML via the file parameter to /utils.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2012-09-05T23:00:00Z
Updated: 2024-09-17T00:41:24.152Z
Reserved: 2012-06-14T00:00:00Z
Link: CVE-2012-3551
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2012-09-05T23:55:02.600
Modified: 2012-09-06T04:00:00.000
Link: CVE-2012-3551
Redhat
No data.