DOM-based XSS in Skyline Console via unsanitized instance console log rendering

56% confidence

Description

A DOM-based Cross-Site Scripting (XSS) vulnerability in Skyline Console allows attackers to inject malicious scripts via unsanitized instance console log rendering.

Affected Products

Vendor	Product	Versions
openstack	skyline-console	<5.0.1, ==6.0.0, ==7.0.0

Related News (1 articles)

Tier C

oss-security3h ago

[OSSA-2026-006] OpenStack Skyline: DOM-based XSS in Skyline Console via unsanitized instance console log rendering (CVE-2026-pending)

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

8.0.0

CWECWE-79

PublishedApr 9, 2026

Last enriched2h ago

Trending Score20

Source articles1

Independent1

Info Completeness7/14

Missing: cve_id, cvss, epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

DOM-based XSS in Skyline Console via unsanitized instance console log rendering

Description

Affected Products

Related News (1 articles)

Community Vote

Related CVEs (1)

Pin to Dashboard

Verification

Vulnerability Timeline