漏洞标题
NHN TOAST UI Chart Legend 跨网站脚本
漏洞描述信息
NHN TOAST UI Chart Legend跨站脚本
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
漏洞类别
N/A
漏洞标题
NHN TOAST UI Chart Legend cross site scripting
漏洞描述信息
A vulnerability, which was classified as problematic, has been found in NHN TOAST UI Chart 4.1.4. This issue affects some unknown processing of the component Legend Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 4.2.0 is able to address this issue. The identifier of the patch is 1a3f455d17df379e11b501bb5ba1dd1bcc41d63e. It is recommended to upgrade the affected component. The identifier VDB-221501 was assigned to this vulnerability.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
漏洞类别
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
漏洞标题
tui.chart 跨站脚本漏洞
漏洞描述信息
tui.chart是NHN开源的一个用于数据可视化的漂亮图表。 tui.chart 4.1.4版本存在跨站脚本漏洞,该漏洞源于组件Legend Handler的某些未知处理存在问题,会导致跨站脚本漏洞。
CVSS信息
N/A
漏洞类别
跨站脚本