Moderate severityNVD Advisory· Published Sep 22, 2022· Updated Apr 22, 2025
Toast UI Grid vulnerable to Cross-site scripting
CVE-2022-23458
Description
Toast UI Grid is a component to display and edit data. Versions prior to 4.21.3 are vulnerable to cross-site scripting attacks when pasting specially crafted content into editable cells. This issue was fixed in version 4.21.3. There are no known workarounds.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
tui-gridnpm | < 4.21.3 | 4.21.3 |
Affected products
2- nhn/tui.gridv5Range: 4.21.3
Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
5- github.com/advisories/GHSA-9rwj-9j2h-fhvmghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-23458ghsaADVISORY
- securitylab.github.com/advisories/GHSL-2022-029_nhn_tui_gridghsaADVISORY
- github.com/nhn/tui.grid/commit/e9db5968675ae113c07efc091cce210f2b26854fghsax_refsource_MISCWEB
- securitylab.github.com/advisories/GHSL-2022-029_nhn_tui_grid/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.