CVE-2014-0208
16.10.2017, 18:29
Cross-site scripting (XSS) vulnerability in the search auto-completion functionality in Foreman before 1.4.4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted key name.
| Vendor | Product | Version |
|---|---|---|
| theforeman | foreman | 𝑥 ≤ 1.4.3 |
𝑥
= Vulnerable software versions