Lucene search
Veracode Vulnerability DatabaseVERACODE:3643HistoryMar 09, 2017 - 4:36 a.m.
Stored Cross-Site Scripting (XSS)
2017-03-0904:36:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.0004 Low
EPSS
Percentile
15.8%
Apache Ranger is vulnerable to stored cross-site scripting (XSS) attacks. When entering custom policy conditions, admin users can store some arbitrary javascript code to be executed when normal users login and access policies.
| CPE | Name | Operator | Version |
|---|---|---|---|
| common library for plugins | le | 0.6.2 |
Related
cvelist
cvelist
CVE-2016-8751
2017-06-14 17:00:00
cve
cve
CVE-2016-8751
2017-06-14 17:29:00
osv
osv
CVE-2016-8751
2017-06-14 17:29:00
github
github
nvd
nvd
CVE-2016-8751
2017-06-14 17:29:00
prion
prion
Cross site scripting
2017-06-14 17:29:00
mageia
mageia
Updated jasper packages fix security vulnerabilities
2017-12-31 03:10:15
openvas
openvas
Mageia: Security Advisory (MGASA-2017-0474)
2022-01-28 00:00:00