6 matches found
EUVD-2012-0914
Malware in sbrugna...
Puppet Dashboard Multiple XSS Vulnerabilities
According to its self-reported version number, the Puppet Dashboard install on the remote host is later than version 1.0 but prior to 1.2.5. It is, therefore, affected by multiple cross-site scripting vulnerabilities. Multiple cross-site scripting flaws exist where unspecified input is not...
CVE-2012-0891
Multiple cross-site scripting XSS vulnerabilities in Puppet Dashboard 1.0 before 1.2.5 and Enterprise 1.0 before 1.2.5 and 2.x before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified fields...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Puppet Dashboard 1.0 before 1.2.5 and Enterprise 1.0 before 1.2.5 and 2.x before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified fields...
CVE-2012-0891
CVE-2012-0891 involves multiple XSS vulnerabilities in Puppet Dashboard 1.0 up to 1.2.5 and Puppet Enterprise 1.0 up to 1.2.5, and in 2.x up to 2.0.1. The issue allows an attacker to inject arbitrary web script or HTML via unspecified input fields, enabling likely browser-side code execution and ...
CVE-2012-0891
Multiple cross-site scripting XSS vulnerabilities in Puppet Dashboard 1.0 before 1.2.5 and Enterprise 1.0 before 1.2.5 and 2.x before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified fields...