Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 4:51 a.m.8 views

CVE-2024-36110

ansibleguy-webui is an open source WebUI for using Ansible. Multiple forms in versions 0.0.21 allowed injection of HTML elements. These are returned to the user after executing job actions and thus evaluated by the browser. These issues have been addressed in version 0.0.21 0.0.21.post2 on pypi...

8.2CVSS7AI score0.004EPSS
Exploits0References1
NVD
NVD
added 2024/05/28 7:15 p.m.23 views

CVE-2024-36110

ansibleguy-webui is an open source WebUI for using Ansible. Multiple forms in versions 0.0.21 allowed injection of HTML elements. These are returned to the user after executing job actions and thus evaluated by the browser. These issues have been addressed in version 0.0.21 0.0.21.post2 on pypi...

8.2CVSS8.4AI score0.004EPSS
Exploits0References4
OSV
OSV
added 2024/05/28 6:33 p.m.23 views

CVE-2024-36110 Cross-site scripting in ansibleguy-webui

ansibleguy-webui is an open source WebUI for using Ansible. Multiple forms in versions 0.0.21 allowed injection of HTML elements. These are returned to the user after executing job actions and thus evaluated by the browser. These issues have been addressed in version 0.0.21 0.0.21.post2 on pypi...

8.2CVSS8.3AI score0.004EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/05/28 6:33 p.m.15 views

CVE-2024-36110 Cross-site scripting in ansibleguy-webui

ansibleguy-webui is an open source WebUI for using Ansible. Multiple forms in versions 0.0.21 allowed injection of HTML elements. These are returned to the user after executing job actions and thus evaluated by the browser. These issues have been addressed in version 0.0.21 0.0.21.post2 on pypi...

8.2CVSS6.9AI score0.004EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/05/28 6:33 p.m.31 views

CVE-2024-36110 Cross-site scripting in ansibleguy-webui

ansibleguy-webui is an open source WebUI for using Ansible. Multiple forms in versions 0.0.21 allowed injection of HTML elements. These are returned to the user after executing job actions and thus evaluated by the browser. These issues have been addressed in version 0.0.21 0.0.21.post2 on pypi...

8.2CVSS8.4AI score0.004EPSS
Exploits0References4
CVE
CVE
added 2024/05/28 6:33 p.m.76 views

CVE-2024-36110

CVE-2024-36110 affects the open-source web UI for Ansible named ansibleguy-webui. The vulnerability arises from multiple HTML injection points in forms for versions earlier than 0.0.21, with injected elements being returned to users and rendered by browsers after job actions. The issue has been a...

8.2CVSS8.4AI score0.004EPSS
Exploits0References4
Rows per page
Query Builder