John Jason Fallows
Wednesday, March 27, 2019
New vulnerability on the NVD: CVE-2016-10744
In Select2 through 4.0.5, as used in Snipe-IT and other products, rich selectlists allow XSS. This affects use cases with Ajax remote data loading when HTML templates are used to display listbox data.
from Pocket https://ift.tt/2UTWCb3
via
IFTTT
No comments:
Post a Comment
Newer Post
Older Post
Home
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment