HomePentest-Tools.com Logo

Foreman XSS Vulnerability CVE-2016-6320

Severity
CVSSv3 Score
5.4
Vulnerability description

Foreman is prone to a cross-site scripting vulnerability.

Risk description

Network interface identifiers stored for hosts may contain HTML or JavaScript that allows a stored XSS vulnerability when later viewing the host edit form.

Recommendation

Upgrade to 1.12.2 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Aug 19, 2016
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available