Title: Persistent XSS in Horizon metadata dashboard Reporter: Sunil Yadav (IBM) Products: Horizon Affects: version 2015.1.0 Description: Sunil Yadav from IBM Security Services reported a persistent XSS in Horizon. An authenticated user may conduct a persistent XSS attack by setting a malicious metadata to a Glance image, a Nova flavor or a Host Aggregate and tricking an administrator to load the update metadata page. Once executed in a legitimate context this attack may result in a privilege escalation. All Horizon setups are affected. Upstream bug: https://launchpad.net/bugs/1449260 Upstream commit: https://git.openstack.org/cgit/openstack/horizon/commit/?id=e7f3e0880f4e311c768c413e43317674cb234515
Created python-django-horizon tracking bugs for this issue: Affects: fedora-all [bug 1222873] Affects: openstack-rdo [bug 1222874]
This issue has been addressed in the following products: OpenStack 6 for RHEL 7 Via RHSA-2015:1679 https://rhn.redhat.com/errata/RHSA-2015-1679.html