Werk #2390: Fixed possible XSS issue on views
Component | GUI |
Title | Fixed possible XSS issue on views |
Date | Jun 30, 2015 |
Checkmk Editon | Checkmk Raw (CRE) |
Checkmk Version | 1.2.7i3 |
Level | Trivial Change |
Class | Security Fix |
Compatibility | Compatible - no manual interaction needed |
It was possible to use the view_name variable to inject HTML/Javascript code into the status GUI views.
To the list of all Werks