Lucene search
Veracode Vulnerability DatabaseVERACODE:13611HistoryApr 09, 2019 - 2:29 a.m.
Cross-site Scripting (XSS)
2019-04-0902:29:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
37.5%
materialize is vulnerable to cross-site scripting (XSS) attacks. A remote attacker is able to inject arbitrary Javascript into a victim’s browser via the Tooltip feature.
| CPE | Name | Operator | Version |
|---|---|---|---|
| materialize | le | 1.0.0 | |
| materialize | le | 1.0.0-rc.2 | |
| materialize-css | le | 1.0.0 | |
| materialize-css | le | 1.0.0 | |
| materialize | le | 0.97.6 |
Related
nvd
nvd
CVE-2019-11002
2019-04-08 18:29:00
nodejs
nodejs
Cross-Site Scripting
2019-04-17 18:55:53
cvelist
cvelist
CVE-2019-11002
2019-04-08 17:45:45
cve
cve
CVE-2019-11002
2019-04-08 18:29:00
osv
osv
CVE-2019-11002
2019-04-08 18:29:00
Materialize-css vulnerable to Cross-site Scripting in tooltip component
2019-04-09 19:44:40
github
github
Materialize-css vulnerable to Cross-site Scripting in tooltip component
2019-04-09 19:44:40
prion
prion
Design/Logic Flaw
2019-04-08 18:29:00