In Materialize through 1.0.0, XSS is possible via the Toast feature.
References
Link | Resource |
---|---|
https://github.com/Dogfalo/materialize/issues/6286 | Exploit Issue Tracking Third Party Advisory |
Configurations
Information
Published : 2019-04-08 11:29
Updated : 2019-04-08 13:27
NVD link : CVE-2019-11004
Mitre link : CVE-2019-11004
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
materializecss
- materialize