SecuritySpace - CVE-2017-7535

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-7535

Description: foreman before version 1.16.0 is vulnerable to a stored XSS in organizations/locations assignment to hosts. Exploiting this requires a user to actively assign hosts to an organization that contains html in its name which is visible to the user prior to taking action.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-7535
BugTraq ID: 99604
http://www.securityfocus.com/bid/99604
http://seclists.org/oss-sec/2017/q3/521

CVE ID:	CVE-2017-7535
Description:	foreman before version 1.16.0 is vulnerable to a stored XSS in organizations/locations assignment to hosts. Exploiting this requires a user to actively assign hosts to an organization that contains html in its name which is visible to the user prior to taking action.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7535 BugTraq ID: 99604 http://www.securityfocus.com/bid/99604 http://seclists.org/oss-sec/2017/q3/521