[checkmk-commits] [tribe29/checkmk] 29d3f7: 12547 SEC Fix possible XSS on audit log page

12 Mar 2021

  Branch: refs/heads/master
  Home:   https://github.com/tribe29/checkmk
  Commit: 29d3f74a63dccb88116f14357e8ee724db868d50
      https://github.com/tribe29/checkmk/commit/29d3f74a63dccb88116f14357e8ee724d…
  Author: Lars Michelsen &lt;lm(a)tribe29.com&gt;
  Date:   2021-03-12 (Fri, 12 Mar 2021)

  Changed paths:
    A .werks/12547
    M cmk/gui/wato/pages/audit_log.py

  Log Message:
  -----------
  12547 SEC Fix possible XSS on audit log page

Displaying the detail text of changes could trigger execution of arbitrary
javascript code that was previously stored by a modification made to the
configuration.

Change-Id: I38f50752d80770f795ff727e3b0bde0723848a3f

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

[checkmk-commits] [tribe29/checkmk] 29d3f7: 12547 SEC Fix possible XSS on audit log page