Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Horizon
(Openstack)| Repositories |
• https://github.com/openstack/horizon
• https://github.com/openstack/keystone |
| #Vulnerabilities | 22 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-12-04 | CVE-2020-29565 | An issue was discovered in OpenStack Horizon before 15.3.2, 16.x before 16.2.1, 17.x and 18.x before 18.3.3, 18.4.x, and 18.5.x. There is a lack of validation of the "next" parameter, which would allow someone to supply a malicious URL in Horizon that can cause an automatic redirect to the provided malicious URL. | Debian_linux, Horizon | 6.1 | ||
| 2023-08-22 | CVE-2022-45582 | Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the success_url parameter. | Horizon | 6.1 |