Lucene search
PRIOn knowledge basePRION:CVE-2020-28487HistoryJan 22, 2021 - 6:15 p.m.
Design/Logic Flaw
2021-01-2218:15:00
PRIOn knowledge base
www.prio-n.com
5
0.002 Low
EPSS
Percentile
52.6%
This affects the package vis-timeline before 7.4.4. An attacker with the ability to control the items of a Timeline element can inject additional script code into the generated application.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vis-timeline | lt | 7.4.4 |
Related
cve
cve
CVE-2020-28487
2021-01-22 18:15:12
osv
osv
Cross-site Scripting in vis-timeline
2021-04-13 15:19:50
CVE-2020-28487
2021-01-22 18:15:12
nvd
nvd
CVE-2020-28487
2021-01-22 18:15:12
veracode
veracode
Cross-Site Scripting (XSS)
2021-01-25 06:33:12
cvelist
cvelist
CVE-2020-28487 Cross-site Scripting (XSS)
2021-01-22 00:00:00
github
github
Cross-site Scripting in vis-timeline
2021-04-13 15:19:50