Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:43 p.m.8 views

CVE-2020-8923

An improper HTML sanitization in Dart versions up to and including 2.7.1 and dev versions 2.8.0-dev.16.0, allows an attacker leveraging DOM Clobbering techniques to skip the sanitization and inject custom html/javascript XSS. Mitigation: update your Dart SDK to 2.7.2, and 2.8.0-dev.17.0 for the d...

6.1CVSS6.7AI score0.00316EPSS
Exploits0References1
NVD
NVD
added 2020/03/26 12:15 p.m.14 views

CVE-2020-8923

An improper HTML sanitization in Dart versions up to and including 2.7.1 and dev versions 2.8.0-dev.16.0, allows an attacker leveraging DOM Clobbering techniques to skip the sanitization and inject custom html/javascript XSS. Mitigation: update your Dart SDK to 2.7.2, and 2.8.0-dev.17.0 for the d...

6.1CVSS5.6AI score0.00316EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/03/26 11:31 a.m.18 views

CVE-2020-8923 XSS in Dart

An improper HTML sanitization in Dart versions up to and including 2.7.1 and dev versions 2.8.0-dev.16.0, allows an attacker leveraging DOM Clobbering techniques to skip the sanitization and inject custom html/javascript XSS. Mitigation: update your Dart SDK to 2.7.2, and 2.8.0-dev.17.0 for the d...

5.4CVSS6.3AI score0.00316EPSS
Exploits0References1
CVE
CVE
added 2020/03/26 11:31 a.m.52 views

CVE-2020-8923

CVE-2020-8923 describes an XSS in Dart via improper HTML sanitization that can be bypassed using DOM Clobbering. Affected: Dart SDK up to 2.7.1 and dev versions 2.8.0-dev.16.0 . Impact: attacker can inject custom HTML/JavaScript when user-provided data populates DOM nodes. Mitigation: upgrade to ...

6.1CVSS5.8AI score0.00316EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder