Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:7623
HistoryOct 19, 2018 - 8:27 a.m.

Cross-site Scripting (XSS)

2018-10-1908:27:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7

EPSS

0.001

Percentile

23.9%

katello is vulnerable to a cross-site scripting (XSS) attack. The library does not properly encode the html tag in the organization’s name, allowing a malicious user to inject and execute arbitrary Javascript in a victim’s browser.

EPSS

0.001

Percentile

23.9%