Количество 2
Количество 2
CVE-2021-23398
больше 4 лет назад
All versions of package react-bootstrap-table are vulnerable to Cross-site Scripting (XSS) via the dataFormat parameter. The problem is triggered when an invalid React element is returned, leading to dangerouslySetInnerHTML being used, which does not sanitize the output.
CVSS3: 6.1
EPSS: Низкий
GHSA-2589-w6xf-983r
около 4 лет назад
Cross-site scripting in react-bootstrap-table
CVSS3: 6.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-23398 All versions of package react-bootstrap-table are vulnerable to Cross-site Scripting (XSS) via the dataFormat parameter. The problem is triggered when an invalid React element is returned, leading to dangerouslySetInnerHTML being used, which does not sanitize the output. | CVSS3: 6.1 | 0% Низкий | больше 4 лет назад |
| GHSA-2589-w6xf-983r Cross-site scripting in react-bootstrap-table | CVSS3: 6.1 | 0% Низкий | около 4 лет назад |
Уязвимостей на страницу
20