CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Openstack: >> Puppet-Gerrit Security Vulnerabilities

CVE-2016-5737

The Gerrit configuration in the Openstack Puppet module for Gerrit (aka puppet-gerrit) improperly marks text/html as a safe mimetype, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a crafted review.

CVSS Score

6.1

EPSS Score

0.001

Published

2017-01-12

Page 1

Vulnerabilities

Vulnerable Software

Openstack: >> Puppet-Gerrit Security Vulnerabilities

Products

Pricing

Contact Us