VulnerableCode Package Details - pkg:pypi/horizon@2013.2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/horizon@2013.2

Essentials
History (3)

purl	pkg:pypi/horizon@2013.2
Tags	Ghost

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	3.1

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-7zwb-k8zj-r3az Aliases: CVE-2014-0157 GHSA-cmg8-5c63-pg95	OpenStack Dashboard (aka Horizon) vulnerable to Cross-site Scripting Cross-site scripting (XSS) vulnerability in the Horizon Orchestration dashboard in OpenStack Dashboard (aka Horizon) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote attackers to inject arbitrary web script or HTML via the description field of a Heat template.	2013.2.4 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-04T14:30:41.125000+00:00	GHSA Importer	Affected by	VCID-7zwb-k8zj-r3az	https://github.com/advisories/GHSA-cmg8-5c63-pg95	38.1.0
2026-04-01T12:50:28.356002+00:00	GitLab Importer	Affected by	VCID-7zwb-k8zj-r3az	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/horizon/CVE-2014-0157.yml	38.0.0
2026-04-01T12:46:52.974693+00:00	GitLab Importer	Fixing	VCID-ryy7-2bu5-gbaf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/horizon/CVE-2013-4471.yml	38.0.0