CVE-2015-1368
Ansible Tower (aka Ansible UI) prior to version 2.0.5 is affected by multiple cross-site scripting (XSS) vulnerabilities. The issues allow remote attackers to inject arbitrary script or HTML via input parameters in the API: (1) order_by to credentials/, (2) inventories/, (3) projects/, or (4) use...