CVE-2018-16459

An unescaped payload in exceljs <v1.6 allows a possible XSS via cell value when worksheet is displayed in browser.
References
Link Resource
https://hackerone.com/reports/356809 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:exceljs_project:exceljs:*:*:*:*:*:node.js:*:*

Information

Published : 2018-09-06 01:29

Updated : 2019-10-09 11:36


NVD link : CVE-2018-16459

Mitre link : CVE-2018-16459

Products Affected
No products.
CWE