Hello,
thanks for this, but as the fix seems to be 1 year and half ago. also https://issues.apache.org/jira/browse/AMBARI-25329 this is in 2.7.4 and therefore one needs a fix for that version ? Not sure about that as there is a comment in the ticket. J Julien Tane Big Data Engineer [Tel.] +49 721 98993-393 [Fax] +49 721 98993-66 [E-Mail] j...@solute.de<mailto:j...@solute.de> solute GmbH Zeppelinstraße 15 76185 Karlsruhe Germany [Logo Solute] Marken der solute GmbH | brands of solute GmbH [Marken] Geschäftsführer | Managing Director: Dr. Thilo Gans, Bernd Vermaaten Webseite | www.solute.de <http://www.solute.de/> Sitz | Registered Office: Karlsruhe Registergericht | Register Court: Amtsgericht Mannheim Registernummer | Register No.: HRB 110579 USt-ID | VAT ID: DE234663798 Informationen zum Datenschutz | Information about privacy policy https://www.solute.de/ger/datenschutz/grundsaetze-der-datenverarbeitung.php ________________________________ Von: Szabolcs Béki <sz...@apache.org> Gesendet: Montag, 1. März 2021 23:11:21 An: user@ambari.apache.org Betreff: [CVE-2020-1936]: Stored XSS in Apache Ambari Hello Ambari Users, A cross-site scripting issue was found in Apache Ambari Views. This was addressed in Apache Ambari 2.7.4. This issue is being tracked as AMBARI-25329 Credit: Apache Ambari would like to thank Krzysztof Przybylski from STM Solutions Szabi
