Lucene search
Veracode Vulnerability DatabaseVERACODE:13615HistoryApr 09, 2019 - 3:01 a.m.
Cross-site Scripting (XSS)
2019-04-0903:01:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.001 Low
EPSS
Percentile
37.5%
materialize is vulnerable to cross-site scripting (XSS) attacks. A remote attacker is able to inject arbitrary Javascript into a victim’s browser via the Autocomplete feature.
| CPE | Name | Operator | Version |
|---|---|---|---|
| materialize | le | 1.0.0 | |
| materialize-css | le | 1.0.0 | |
| materialize-css | le | 1.0.0 | |
| materialize | le | 1.0.0-rc.2 | |
| materialize | le | 0.97.6 |
Related
cve
cve
CVE-2019-11003
2019-04-08 18:29:00
nodejs
nodejs
Cross-Site Scripting
2019-04-17 18:54:19
prion
prion
Security feature bypass
2019-04-08 18:29:00
github
github
Materialize-css vulnerable to Cross-site Scripting in autocomplete component
2019-04-09 19:44:38
nvd
nvd
CVE-2019-11003
2019-04-08 18:29:00
osv
osv
CVE-2019-11003
2019-04-08 18:29:00
Materialize-css vulnerable to Cross-site Scripting in autocomplete component
2019-04-09 19:44:38
cvelist
cvelist
CVE-2019-11003
2019-04-08 17:45:54