Theforeman: >> Foreman >> 1.16.0 Security Vulnerabilities
An input sanitization flaw was found in the id field in the dashboard controller of Foreman before 1.16.1. A user could use this flaw to perform an SQL injection attack on the back end database.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-04-05
Cross-site scripting (XSS) vulnerability in Foreman 1.7.0 and after.
CVSS Score
6.1
EPSS Score
0.004
Published
2017-09-25
Page 2