4 matches found
CVE-2022-27979
A cross-site scripting XSS vulnerability in ToolJet v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component...
Cross site scripting
A cross-site scripting XSS vulnerability in ToolJet v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component...
CVE-2022-27979
A cross-site scripting XSS vulnerability in ToolJet v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component...
CVE-2022-27979
ToolJet v1.6.0 contains a cross-site scripting (XSS) vulnerability in the Comment Body component that allows an attacker to inject and execute arbitrary web scripts or HTML. Affected software: ToolJet 1.6.0; vulnerability type: XSS via crafted payload in Comment Body. CVSSv3.1 base score 5.4 (Med...