CVE-2015-3162

2017-09-06T17:29:00
ID CVE-2015-3162
Type cve
Reporter NVD
Modified 2017-09-25T21:29:00

Description

Cross-site scripting (XSS) vulnerability in the edit comment dialog in bkr/server/widgets.py in Beaker 20.1 allows remote authenticated users to inject arbitrary web script or HTML via writing a crafted comment on an acked or nacked canceled job.