Checkmk Werk 11501: Fix possible XSS using titles of views

21 Oct 2020

ID:          11501
Title:       Fix possible XSS using titles of views
Component:   Multisite
Level:       1
Class:       Security fix
Version:     2.0.0i1

Authenticated users that are allowed to configure and share custom views
could inject arbitrary JS code to all users which are permitted to view this
view.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

Checkmk Werk 11501: Fix possible XSS using titles of views