Cross-site scripting (XSS) vulnerability in OpenStack Dashboard (Horizon) 8.0.1 and earlier and 9.0.0 through 9.0.1 allows remote authenticated users to inject arbitrary web script or HTML by injecting an AngularJS template in a dashboard form.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2016-07-12T19:00:00

Updated: 2024-08-06T00:32:24.621Z

Reserved: 2016-05-02T00:00:00

Link: CVE-2016-4428

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-07-12T19:59:03.257

Modified: 2023-02-12T23:20:30.723

Link: CVE-2016-4428

cve-icon Redhat

Severity : Important

Publid Date: 2016-06-17T00:00:00Z

Links: CVE-2016-4428 - Bugzilla