3 matches found
CVE-2026-41722
CVE-2026-41722 is a stored cross-site scripting vulnerability affecting VMware Cloud Foundation Operations and related products. The NVD/Broadcom advisory describes that a malicious actor with privileges to create policies, views, or text-widgets can inject scripts to perform administrative actio...
CVE-2012-1512
CVE-2012-1512 is a cross-site scripting (XSS) vulnerability in the vSphere Client’s internal browser. The issue arises from the client’s handling of log-file entries, where unsanitized input can execute arbitrary script/HTML when a malicious log file is opened. VMware’s advisory VMSA-2012-0005 de...
CVE-2026-41723
VMware Cloud Foundation Operations is affected by CVE-2026-41723 (and related CVEs) with multiple stored cross-site scripting vulnerabilities. The NVD/NVD-derived details indicate an issue in VMware Cloud Foundation Operations where a malicious actor with privileges to create policies, views, or ...