search

ganglia / ganglia-web

Ganglia Web Frontend
BSD 3-Clause "New" or "Revised" License
317 stars 169 forks source link

XSS found in Ganglia-web Frontend version 3.7.1 Web Backend version 3.7.2 #358

Open Ccihad opened 3 years ago

Ccihad commented 3 years ago

There is Reflected XSS on /ganglia/api/host.php_debug=1&action=get&h=(XSS PAYLOAD) get parameter affected this vuln.

solbu commented 3 years ago

Could be the same issue as repported in bug #351