Horizon@9.0.1 Security Vulnerabilities and Issues — Horizon@9.0.1 CVE List

Lucene search

OpenstackHorizon9.0.1

2 matches found

CVE•added 2016/07/12 7:59 p.m.•112 views

CVE-2016-4428

Cross-site scripting (XSS) vulnerability in OpenStack Dashboard (Horizon) 8.0.1 and earlier and 9.0.0 through 9.0.1 allows remote authenticated users to inject arbitrary web script or HTML by injecting an AngularJS template in a dashboard form.

5.4CVSS5AI score0.00553EPSS

CVE•added 2017/04/03 2:59 p.m.•60 views

CVE-2017-7400

OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.

4.8CVSS4.5AI score0.00223EPSS