OpenNebula 跨站脚本漏洞

OpenNebula is an open-source cloud computing platform developed by OpenNebula, used for managing heterogeneous distributed data center infrastructures. Version 6.10.0.1 of OpenNebula contains a cross-site scripting vulnerability. This vulnerability stems from a custom authentication driver that h...

CVE-2025-56536

A stored cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the user information parameter...

CVE-2025-56537

CVE-2025-56537 affects OpenNebula OpenNebula v6.10.0.1; the stored XSS occurs via a crafted payload injected into the virtual network template parameter. The issue is fixed in OpenNebula 7.0. An attacker can trigger the stored XSS through the vulnerable web UI (Sunstone) under network template in...

OpenNebula 跨站脚本漏洞

OpenNebula is an open-source cloud computing platform developed by OpenNebula, used for managing heterogeneous distributed data center infrastructure. Version 6.10.0.1 of OpenNebula contains a cross-site scripting vulnerability. This vulnerability arises from injecting a specially crafted payload...

PT-2026-35944

Name of the Vulnerable Software and Affected Versions opennebula versions 6.10.0.1 through 6.x Description A stored cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML. This is achieved by injecting a crafted payload into the virtual network template parameter...