← Back

Puppet Gerrit

puppet-gerrit

Vendor: Openstack • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2016-5737
1Openstack
1Puppet Gerrit
May 13, 2026
Jan 12, 2017
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The Gerrit configuration in the Openstack Puppet module for Gerrit (aka puppet-gerrit) improperly marks text/html as a safe mimetype, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a...Show more
The Gerrit configuration in the Openstack Puppet module for Gerrit (aka puppet-gerrit) improperly marks text/html as a safe mimetype, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a crafted review.Show less