Werk #6613: Fixed multiple reflected XSS in affecting sidebar snapin AJAX calls
| Komponente | User interface |
| Titel | Fixed multiple reflected XSS in affecting sidebar snapin AJAX calls |
| Datum | 14.09.2018 |
| Checkmk Edition | Checkmk Raw (CRE) |
| Checkmk-Version | 1.4.0p36 1.5.0p5 1.6.0b1 |
| Level | Kleine Änderung |
| Klasse | Sicherheitsfix |
| Kompatibilität | Kompatibel - benötigt kein manuelles Eingreifen |
Multiple parameters of several snapin AJAX calls were vulnerable to reflected XSS. The speedometer is accessible to all users with at least monitoring privileges.
