7 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-1726
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to...
Malicious code in htmlcontent (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4aa1c1ab3630fc2aad076dcc5fd9b2205ba7e1079410b1de1b6a757690fdd2b1 The OpenSSF Package Analysis project identified 'htmlcontent' @ 3.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2025-6792 Malicious code in htmlcontent (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4aa1c1ab3630fc2aad076dcc5fd9b2205ba7e1079410b1de1b6a757690fdd2b1 The OpenSSF Package Analysis project identified 'htmlcontent' @ 3.0.0 npm as malicious. It is considered malicious because: - The package...
CVE-2022-1726
Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to 1.20.2. Disclosing session cookies, disclosing secure session data, exfiltrating data to third-parties...
CVE-2022-1726
Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to 1.20.2. Disclosing session cookies, disclosing secure session data, exfiltrating data to third-parties...
CVE-2022-1726 Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in wenzhixin/bootstrap-table
Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to 1.20.2. Disclosing session cookies, disclosing secure session data, exfiltrating data to third-parties...
Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true
Description Hello and thank you for the wonderful library! We use it extensively in our app. However, I think we've identified an XSS vulnerability in the Export plug-in. If you set the exportOptions in your Bootstrap Table to true, then you can force arbitrary Javascript to execute see the...