VulnerableCode Package Details - pkg:deb/debian/horizon@2015.1.0%2B2015.06.09.git15.e63af6c598-1?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/horizon@2015.1.0%2B2015.06.09.git15.e63af6c598-1?distro=trixie

purl	pkg:deb/debian/horizon@2015.1.0%2B2015.06.09.git15.e63af6c598-1?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-xpdp-h35e-m3cz	Cross-site scripting (XSS) vulnerability in the Orchestration/Stack section in OpenStack Dashboard (Horizon) 2014.2 before 2014.2.4 and 2015.1.x before 2015.1.1 allows remote attackers to inject arbitrary web script or HTML via the description parameter in a heat template, which is not properly handled in the help_text attribute in the Field class.	CVE-2015-3219 GHSA-rhjj-f6gq-6gx2 PYSEC-2015-40

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:59:06.247279+00:00	Debian Importer	Fixing	VCID-xpdp-h35e-m3cz	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:11:00.533858+00:00	Debian Importer	Fixing	VCID-xpdp-h35e-m3cz	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:26:34.839260+00:00	Debian Importer	Fixing	VCID-xpdp-h35e-m3cz	https://security-tracker.debian.org/tracker/data/json	38.1.0