Werk #12762: Fix several XSS issues

Komponente User interface
Titel Fix several XSS issues
Datum 07.05.2021
Checkmk Edition Checkmk Raw (CRE)
Checkmk-Version 1.6.0p25 2.0.0p4 2.1.0b1
Level Kleine Änderung
Klasse Sicherheitsfix
Kompatibilität Kompatibel - benötigt kein manuelles Eingreifen

  • JavaScript was executed in the rule overview if a script was entered in the Text to match of EC rules.
  • JavaScript was executed if scripts were entered in the LDAP server and failover server and "Save & Test" was clicked
  • JavaScript was executed in the notification rules if sripts were entered in the the title and topic of aux tags and tags.

FEED-6031

Zur Liste aller Werks