3 matches found
Cloudera HUE =< 3.9.0 is vulnerable to multiple stored XSS (CVE-2016-4946)
Cloudera HUE = 3.9.0 is vulnerable to multiple stored XSS: In the Username, First name and Last name fields of a user profile. This can be triggered while logging in with the account. In the Group Name field of group creation. This can be triggered when sharing an item...
CVE-2016-4946
Multiple cross-site scripting XSS vulnerabilities in Cloudera HUE 3.9.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 First name or 2 Last name field in the HUE Users page...
CVE-2016-4946
Multiple cross-site scripting XSS vulnerabilities in Cloudera HUE 3.9.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 First name or 2 Last name field in the HUE Users page...