CVE-2014-3492
Foreman contains cross-site scripting (XSS) vulnerabilities in the host YAML view. The issue affects Foreman versions prior to 1.4.5 and 1.5.x prior to 1.5.1, allowing an attacker to inject arbitrary script or HTML via the host-related parameters (name or value). The root cause is not detailed in...