Cross-Site Scripting Vulnerability in OpenStack Dashboard by OpenStack
CVE-2016-4428

5.4MEDIUM

Key Information:

Vendor: Openstack
Status: Horizon
Vendor: CVE Published:; 12 July 2016

What is CVE-2016-4428?

An XSS vulnerability in OpenStack Dashboard (Horizon) allows remote authenticated users to inject arbitrary web scripts or HTML via AngularJS templates within dashboard forms. This flaw could lead to unauthorized access or data manipulation, compromising the integrity of the affected application.