CVE-2017-1002152
Published
CVSS v3
6.1
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT
Description
Bodhi 2.9.0 and lower is vulnerable to cross-site scripting resulting in code injection caused by incorrect validation of bug titles.
Bodhi is a web-system that facilitates the process of publishing updates for a Fedora-based software distribution.
GitHub