Bug #22042
closed
CVE-2017-12175 - XSS in discovery rule filter autocomplete functionality
Added by Daniel Lobato Garcia over 6 years ago.
Updated over 6 years ago.
Category:
Discovery plugin
|
Description
Jan HutaĆ of Red Hat reports:
There is a XSS possible in discovery rule when you are entering filter and you use autocomplete functionality
Files
- Subject changed from CVE-2017-12175 - XSS in discovery rule filter autocomplete functionality
to CVE-2017-12175 - XSS in discovery rule filter autocomplete functionality
- Category set to Discovery plugin
- Assignee set to Ido Kanner
I have tested it, and it looks like it was resolved
Thanks, I wonder which core patch fixed this, we need to know.
Also available in: Atom
PDF