Security Advisory

CVE-2019-25028

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-23 16:05:40

Last updated 2024-09-16 20:57:32

Assigner Vaadin

State PUBLISHED

Description

Missing variable sanitization in Grid component in com.vaadin:vaadin-server versions 7.4.0 through 7.7.19 (Vaadin 7.4.0 through 7.7.19), and 8.0.0 through 8.8.4 (Vaadin 8.0.0 through 8.8.4) allows attacker to inject malicious JavaScript via unspecified vector

← Browse all CVEs View on cve.org ↗