Werk #12280: Fix XSS on host / folder properties page
Component | Setup |
Title | Fix XSS on host / folder properties page |
Date | Mar 2, 2021 |
Checkmk Edition | Checkmk Raw (CRE) |
Checkmk Version | 1.6.0p23 2.0.0b8 2.1.0b1 |
Level | Trivial Change |
Class | Security Fix |
Compatibility | Compatible - no manual interaction needed |
A user with permissions to edit tag groups could trigger a stored XSS issue on the host and folder properties pages. This may lead to javascript code being executed in the browser of another user which is able to access the host and folder properties pages.