Vulnerabilities > CVE-2014-125078 - Unspecified vulnerability in Horizon Project Horizon

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

horizon-project

NVD

Published: 2023-01-15

Updated: 2024-11-21

Summary

A vulnerability was found in yanheven console and classified as problematic. Affected by this issue is some unknown functionality of the file horizon/static/horizon/js/horizon.instances.js. The manipulation leads to cross site scripting. The attack may be launched remotely. The patch is identified as 32a7b713468161282f2ea01d5e2faff980d924cd. It is recommended to apply a patch to fix this issue. VDB-218354 is the identifier assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Horizon_Project Horizon Project Horizon -	1

References

https://github.com/yanheven/console/commit/32a7b713468161282f2ea01d5e2faff980d924cd
https://github.com/yanheven/console/commit/32a7b713468161282f2ea01d5e2faff980d924cd
https://vuldb.com/?ctiid.218354
https://vuldb.com/?ctiid.218354
https://vuldb.com/?id.218354
https://vuldb.com/?id.218354