mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-27 17:30:27 +01:00
764 B
764 B
CVE-2016-5737
Description
The Gerrit configuration in the Openstack Puppet module for Gerrit (aka puppet-gerrit) improperly marks text/html as a safe mimetype, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a crafted review.
POC
Reference
Github
No PoCs found on GitHub currently.