Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-45582

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter. CVE-2022-45582 Note that Nessus relies on the presence of...

6.1CVSS6.1AI score0.00674EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.4 views

SUSE CVE-2014-0157

Cross-site scripting XSS vulnerability in the Horizon Orchestration dashboard in OpenStack Dashboard aka Horizon 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote attackers to inject arbitrary web script or HTML via the description field of a Heat template...

4.3CVSS6AI score0.01216EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2017/07/12 1:12 p.m.7 views

python-django-horizon: XSS in federation mappings UI

A cross-site scripting flaw was discovered in the OpenStack dashboard horizon which allowed remote authenticated administrators to conduct XSS attacks using a crafted federation mapping rule. For this flaw to be exploited, federation mapping must be enabled in the dashboard...

4.8CVSS5.7AI score0.01054EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/08/24 8:15 p.m.3 views

python-django-horizon: XSS in Heat stack creation

A cross-site scripting XSS flaw was found in the Horizon orchestration dashboard. An attacker able to trick a Horizon user into using a malicious template during the stack creation could use this flaw to perform an XSS attack on that user...

4.3CVSS5.6AI score0.02758EPSS
Exploits1References4
PyPA
PyPA
added 2015/08/20 8:59 p.m.6 views

PYSEC-2015-40

Cross-site scripting XSS vulnerability in the Orchestration/Stack section in OpenStack Dashboard Horizon 2014.2 before 2014.2.4 and 2015.1.x before 2015.1.1 allows remote attackers to inject arbitrary web script or HTML via the description parameter in a heat template, which is not properly handl...

4.3CVSS6AI score0.02758EPSS
Exploits1References9Affected Software1
RedHat Linux
RedHat Linux
added 2015/04/16 1:52 p.m.5 views

dashboard: log file arbitrary file retrieval

It was found that the local log-viewing function of the redhat-access-plugin for OpenStack Dashboard horizon did not sanitize user input. An authenticated user could use this flaw to read an arbitrary file with the permissions of the web server...

4CVSS5.8AI score0.01676EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2014/04/15 12:0 a.m.3 views

PT-2014-3506 · Openstack · Openstack Dashboard

Name of the Vulnerable Software and Affected Versions: OpenStack Dashboard aka Horizon versions 2013.2 before 2013.2.4 OpenStack Dashboard aka Horizon versions icehouse before icehouse-rc2 Description: A cross-site scripting XSS issue exists in the Horizon Orchestration dashboard, allowing remote...

5.1CVSS5.2AI score0.01216EPSS
Exploits1References17
Rows per page
Query Builder