2 matches found
CVE-2018-20962
The Backpack\CRUD Backpack component before 3.4.9 for Laravel allows XSS via the select field type...
CVE-2018-20962
CVE-2018-20962 affects Backpack\CRUD for Laravel (component Backpack) prior to 3.4.9. The vulnerability is an XSS via the select field type, caused by unsanitized attributes in the select.blade.php implementation. Affected ecosystem: Laravel-based Backpack\CRUD, with public references confirming ...