AI Score
Confidence
High
EPSS
Percentile
48.2%
Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2013.2 and earlier allow local users to inject arbitrary web script or HTML via an instance name to (1) “Volumes” or (2) “Network Topology” page.
lists.opensuse.org/opensuse-updates/2015-01/msg00040.html
secunia.com/advisories/55770
secunia.com/advisories/56117
www.securityfocus.com/bid/63787
www.ubuntu.com/usn/USN-2062-1
bugs.launchpad.net/horizon/+bug/1247675