org.apache.ambari, ambari is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to insufficient validation and constraint enforcement, resulting in a stored XSS. This could potentially be exploited to perform unauthorized actions, ranging from unauthorized data access to session hijacking and the delivery of malicious payloads.
CPE | Name | Operator | Version |
---|---|---|---|
ambari main | le | 2.0.0.0 | |
apache ambari project pom | le | 2.0.0.0 | |
ambari main | le | 2.0.0.0 | |
apache ambari project pom | le | 2.0.0.0 |