Werk #12547: Fix possible XSS on audit log page
Komponente | Setup |
Titel | Fix possible XSS on audit log page |
Datum | 12.03.2021 |
Checkmk Edition | Checkmk Raw (CRE) |
Checkmk-Version | 2.0.0p1 2.1.0b1 |
Level | Kleine Änderung |
Klasse | Sicherheitsfix |
Kompatibilität | Kompatibel - benötigt kein manuelles Eingreifen |
Displaying the detail text of changes could trigger execution of arbitrary javascript code that was previously stored by a modification made to the configuration. This issue may affect users of the setup of previous 2.0.0 versions.