7 matches found
SUSE CVE-2017-14621
Portus 2.2.0 has XSS via the Team field, related to typeahead...
Portus Cross-Site Scripting Vulnerability
Portus is the authorization interface for the next generation of Docker registries. A cross-site scripting vulnerability exists in Portus version 2.2.0. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the help of the 'Team' field...
Code injection
Portus 2.2.0 has XSS via the Team field, related to typeahead...
CVE-2017-14621
Portus 2.2.0 has XSS via the Team field, related to typeahead...
CVE-2017-14621
Portus 2.2.0 has XSS via the Team field, related to typeahead...
CVE-2017-14621
Portus 2.2.0 is affected by an XSS vulnerability in the Team field (typeahead). The issue allows injection of arbitrary web script/HTML via the Team field. A remediation exists: SUSE-SU-2017:2655-1 security update for Portus, which fixes CVE-2017-14621. The vulnerability is listed with CVSS v3.0 ...
CVE-2017-14621
Portus 2.2.0 has XSS via the Team field, related to typeahead...