3 matches found
CVE-2021-32860
iziModal is a modal plugin with jQuery. Versions prior to 1.6.1 are vulnerable to cross-site scripting XSS when handling untrusted modal titles. An attacker who is able to influence the field title when creating a iziModal instance is able to supply arbitrary html or javascript code that will be...
CVE-2021-32860
creationtimestamp| type| source ---|---|--- 2023-02-21 18:16:59+00:00| seen| https://t.me/cibsecurity/58616...
CVE-2021-32860
The CVE-2021-32860 issue affects the jQuery modal plugin iziModal (versions prior to 1.6.1). It describes an XSS vulnerability where untrusted modal titles can be exploited to inject arbitrary HTML/JavaScript code executed in the user context. The root cause is lack of validation/escaping for the...