EPSS
Percentile
36.4%
pcs:stretch is vulnerable to a cross-site scripting. Improper validations of Node name field allow attackers to inject and execute arbitrary Javascript when creating or adding existing clusters.
bugzilla.redhat.com/show_bug.cgi?id=1428948
github.com/ClusterLabs/pcs/commit/1874a769b5720ae5430f10c6cedd234430bc703f
security-tracker.debian.org/tracker/CVE-2017-2661