mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
735 B
735 B
CVE-2022-21802
&color=brighgreen)
Description
The package grapesjs before 0.19.5 are vulnerable to Cross-site Scripting (XSS) due to an improper sanitization of the class name in Selector Manager.
POC
Reference
- https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-2936781
- https://security.snyk.io/vuln/SNYK-JS-GRAPESJS-2935960
Github
No PoCs found on GitHub currently.