Vigil@nce - oVirt Engine: Cross Site Scripting via Windows Service Accounts Homepages, analyzed on 29/09/2022
November 2022 by Vigil@nce
An attacker can trigger a Cross Site Scripting of oVirt Engine, via Windows Service Accounts Homepages, in order to run JavaScript code in the context of the web site.
Plus d'information sur : https://vigilance.fr/vulnerability/oVirt-Engine-Cross-Site-Scripting-via-Windows-Service-Accounts-Homepages-39415