Описание
Cross Site Scripting vulnerability in BootBox Bootbox.js v.3.2 through 6.0 allows a remote attacker to execute arbitrary code via a crafted payload to alert(), confirm(), prompt() functions.
Ссылки
- Issue Tracking
- ExploitVendor Advisory
- Issue Tracking
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 3.2.0 (включая) до 6.0.0 (включая)
cpe:2.3:a:bootboxjs:bootbox:*:*:*:*:*:node.js:*:*
EPSS
Процентиль: 97%
0.3892
Средний
6.1 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
ubuntu
больше 2 лет назад
Cross Site Scripting vulnerability in BootBox Bootbox.js v.3.2 through 6.0 allows a remote attacker to execute arbitrary code via a crafted payload to alert(), confirm(), prompt() functions.
CVSS3: 6.5
redhat
около 2 лет назад
Cross Site Scripting vulnerability in BootBox Bootbox.js v.3.2 through 6.0 allows a remote attacker to execute arbitrary code via a crafted payload to alert(), confirm(), prompt() functions.
CVSS3: 6.1
debian
больше 2 лет назад
Cross Site Scripting vulnerability in BootBox Bootbox.js v.3.2 through ...
EPSS
Процентиль: 97%
0.3892
Средний
6.1 Medium
CVSS3
Дефекты
CWE-79