Checkmk 2.0 is here! See what's new.

Werk #2390: Fixed possible XSS issue on views

Component GUI
Title Fixed possible XSS issue on views
Date Jun 30, 2015
Checkmk Editon Checkmk Raw (CRE)
Checkmk Version 1.2.7i3
Level Trivial Change
Class Security Fix
Compatibility Compatible - no manual interaction needed

It was possible to use the view_name variable to inject HTML/Javascript code into the status GUI views.

To the list of all Werks
conference_logo_white.svg

Expert-led workshops, insightful tech sessions, presentations and more on June 15-16, 2021.

Register now
DEUTSCH