4 matches found
CVE-2018-1000516
The Galaxy Project Galaxy version v14.10 contains a CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability in Many templates used in the Galaxy server did not properly sanitize user's input, which would allow for cross-site scripting XSS attacks. In this form of attack,...
Cross site scripting
The Galaxy Project Galaxy version v14.10 contains a CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability in Many templates used in the Galaxy server did not properly sanitize user's input, which would allow for cross-site scripting XSS attacks. In this form of attack,...
CVE-2018-1000516
The Galaxy Project Galaxy version v14.10 contains a CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability in Many templates used in the Galaxy server did not properly sanitize user's input, which would allow for cross-site scripting XSS attacks. In this form of attack,...
CVE-2018-1000516
CVE-2018-1000516 concerns the Galaxy Project Galaxy version 14.10, where multiple templates fail to properly sanitize user input, enabling cross-site scripting (XSS) via crafted URLs. The root cause is CWE-79 Improper Neutralization of Input During Web Page Generation, allowing injected JavaScrip...