Checkmk 2.0 is here! See what's new.

Werk #2390: Fixed possible XSS issue on views

Component GUI
Title Fixed possible XSS issue on views
Date Jun 30, 2015
Checkmk Editon Checkmk Raw (CRE)
Checkmk Version 1.2.7i3
Level Trivial Change
Class Security Fix
Compatibility Compatible - no manual interaction needed

It was possible to use the view_name variable to inject HTML/Javascript code into the status GUI views.

To the list of all Werks