CVE-2016-8634

Name of the Vulnerable Software and Affected Versions Foreman version 1.14.0

Description A stored XSS attack can occur when creating an organization or location in Foreman with a name containing HTML. This HTML is rendered in the alertbox on the page, specifically in the second step of the wizard at the "/organizations/id/step2" API endpoint. If a user is linked directly to this URL after an organization or location with HTML in its name is created, the stored XSS attack is triggered.

Recommendations For Foreman version 1.14.0, as a temporary workaround, consider validating and sanitizing user input for organization and location names to prevent the inclusion of HTML. Restrict access to the "/organizations/id/step2" API endpoint until a patch is available.