CVE-2021-23472

Posted on 2021년 11월 4일2021년 11월 4일 by admin

CVE-2021-23472

This affects all versions of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an array (instead of a string) even if the escape attribute is set.

Source: CVE-2021-23472

답글 남기기 응답 취소