CVE-2018-15494

In Dojo Toolkit before 1.14, there is unescaped string injection in dojox/Grid/DataGrid.
Configurations

Configuration 1

cpe:2.3:a:dojotoolkit:dojo:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Information

Published : 2018-08-18 02:29

Updated : 2020-08-24 05:37


NVD link : CVE-2018-15494

Mitre link : CVE-2018-15494

Products Affected
CWE
CWE-116

Improper Encoding or Escaping of Output