[checkmk-commits] [tribe29/checkmk] 0f3387: 14260 SEC Fix XSS vulnerability in dashboard elements

3 Jun 2022

  Branch: refs/heads/2.0.0
  Home:   https://github.com/tribe29/checkmk
  Commit: 0f3387f84764b99e000b5d0692816c5fdcbe0301
      https://github.com/tribe29/checkmk/commit/0f3387f84764b99e000b5d0692816c5fd…
  Author: Alei Salem &lt;aleieldin.salem(a)tribe29.com&gt;
  Date:   2022-06-03 (Fri, 03 Jun 2022)

  Changed paths:
    A .werks/14260
    M cmk/gui/plugins/views/painters.py

  Log Message:
  -----------
  14260 SEC Fix XSS vulnerability in dashboard elements

A persistent XSS attack was possible by injecting javascript payloads in strings displayed
on various dashboards (e.g., service description).

Change-Id: I70056c4310d6675d6f52e6a7f046ec6fdf488679

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

[checkmk-commits] [tribe29/checkmk] 0f3387: 14260 SEC Fix XSS vulnerability in dashboard elements