Security Advisory

CVE-2017-15881

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-10-24 22:00:00

Last updated 2024-08-05 20:04:50

Assigner mitre

State PUBLISHED

Description

Cross-Site Scripting vulnerability in KeystoneJS before 4.0.0-beta.7 allows remote authenticated administrators to inject arbitrary web script or HTML via the "content brief" or "content extended" field, a different vulnerability than CVE-2017-15878.

← Browse all CVEs View on cve.org ↗