Lucene search

K
cvelistMitreCVELIST:CVE-2016-10744
HistoryMar 27, 2019 - 3:54 a.m.

CVE-2016-10744

2019-03-2703:54:26
mitre
www.cve.org
1

6.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.0%

In Select2 through 4.0.5, as used in Snipe-IT and other products, rich selectlists allow XSS. This affects use cases with Ajax remote data loading when HTML templates are used to display listbox data.

6.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.0%