Vaadin - Vaadin-menu-bar CVE

Filtered by vendor Vaadin Subscriptions

Filtered by product Vaadin-menu-bar Subscriptions

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2021-33611	1 Vaadin	2 Vaadin, Vaadin-menu-bar	2021-11-02	6.1 Medium
Missing output sanitization in test sources in org.webjars.bowergithub.vaadin:vaadin-menu-bar versions 1.0.0 through 1.2.0 (Vaadin 14.0.0 through 14.4.4) allows remote attackers to execute malicious JavaScript in browser by opening crafted URL

Page 1 of 1.