Werk #2386: Fixed possible XSS on WATO rule edit page
Component | Setup | ||
Title | Fixed possible XSS on WATO rule edit page | ||
Date | Jun 30, 2015 | ||
Level | Trivial Change | ||
Class | Security Fix | ||
Compatibility | Compatible - no manual interaction needed | ||
Checkmk versions & editions |
|
A possible XSS injection has been fixed on the rule edit page of WATO. It was possible to inject javascript code using the HTTP parameters the page is processing.