Where
-Infinity
0

Trending

Last week
Last month
Last year

oss-sec[OSSA-2026-009] Horizon: Unauthenticated session flood via login dict storage (CVE-2026-43002)

First published (updated )
https://seclists.org/oss-sec/2026/q2/408

Openstack Horizon[OSSA-2026-009] Horizon: Unauthenticated session flood via login dict storage (CVE-2026-43002)

Risk 28
Severity
5.3
First published (updated )
CVE-2026-43002

Openstack HorizonOpen Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the success_url paramete…

Risk 39
Severity
6.1
First published (updated )
CVE-2022-45582

Horizon Project Horizonyanheven console horizon.instances.js cross site scripting

Risk 34
Severity
5.4
First published (updated )
CVE-2014-125078

pip/horizonAn issue was discovered in OpenStack Horizon before 15.3.2, 16.x before 16.2.1, 17.x and 18.x before…

Risk 39
Severity
6.1
First published (updated )
CVE-2020-29565
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Debian Debian LinuxThe file /etc/openstack-dashboard/local_settings within Red Hat OpenStack Platform 2.0 and RHOS Esse…

Risk 32
Severity
5.5
First published (updated )
CVE-2012-5474

Debian Debian LinuxInfoleak

Risk 32
Severity
5.5
First published (updated )
CVE-2012-5476

Openstack HorizonXSS

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1439626

Openstack HorizonXSS

Risk 30
Severity
4.8
First published (updated )
CVE-2017-7400

redhat OpenstackXSS

Risk 36
Severity
5.4
First published (updated )
CVE-2016-4428
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Openstack HorizonXSS

Risk 39
Severity
6.1
First published (updated )
CVE-2015-3219

Openstack HorizonXSS

Risk 18
Severity
3.5
First published (updated )
CVE-2015-3988

Openstack HorizonOpenStack Dashboard (Horizon) before 2014.1.3 and 2014.2.x before 2014.2.1 does not properly handle …

Risk 27
Severity
5
First published (updated )
CVE-2014-8124

Openstack HorizonXSS

Risk 19
Severity
3.5
First published (updated )
CVE-2014-3474

Openstack HorizonXSS

Risk 18
Severity
3.5
First published (updated )
CVE-2014-8578
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Openstack HorizonXSS

Risk 18
Severity
3.5
First published (updated )
CVE-2014-3475

Openstack HorizonXSS

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1129774

Openstack HorizonXSS

Risk 19
Severity
3.5
First published (updated )
CVE-2014-3594

Openstack HorizonXSS

Risk 22
Severity
4.3
First published (updated )
CVE-2014-3473

Openstack HorizonThe Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 does not require the current pass…

Risk 34
Severity
5.5
First published (updated )
CVE-2013-4471
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Openstack HorizonXSS

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1082858

Openstack HorizonXSS

Risk 22
Severity
4.3
First published (updated )
CVE-2014-0157

Canonical Ubuntu LinuxXSS

Risk 22
Severity
4.3
First published (updated )
CVE-2013-6858

Openstack HorizonInput Validation

Risk 35
Severity
5.8
First published (updated )
CVE-2012-3540

pip/keystoneOpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and OpenStack Essex (2012.1), allo…

Risk 45
Severity
7.5
First published (updated )
CVE-2012-3542
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Openstack KeystoneOpenStack Keystone before 2012.1.1, as used in OpenStack Folsom before Folsom-1 and OpenStack Essex,…

Risk 31
Severity
4.9
First published (updated )
CVE-2012-3426

Openstack HorizonSession fixation vulnerability in OpenStack Dashboard (Horizon) folsom-1 and 2012.1 allows remote at…

Risk 49
Severity
6.8
First published (updated )
CVE-2012-2144

Openstack HorizonXSS

Risk 23
Severity
4.3
First published (updated )
CVE-2012-2094

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203