Extjs
by Lumiverse
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-8046 | Med | 0.45 | 6.1 | 0.67 | Jul 5, 2018 | The getTip() method of Action Columns of Sencha Ext JS 4 to 6 before 6.6.0 is vulnerable to XSS attacks, even when passed HTML-escaped data. This framework brings no built-in XSS protection, so the developer has to ensure that data is correctly sanitized. However, the getTip()… | ||
| CVE-2007-6758 | 0.00 | — | 0.01 | Jan 23, 2020 | Server-side request forgery (SSRF) vulnerability in feed-proxy.php in extjs 5.0.0. |
- risk 0.45cvss 6.1epss 0.67
The getTip() method of Action Columns of Sencha Ext JS 4 to 6 before 6.6.0 is vulnerable to XSS attacks, even when passed HTML-escaped data. This framework brings no built-in XSS protection, so the developer has to ensure that data is correctly sanitized. However, the getTip()…
- CVE-2007-6758Jan 23, 2020risk 0.00cvss —epss 0.01
Server-side request forgery (SSRF) vulnerability in feed-proxy.php in extjs 5.0.0.