QID 997130
Date Published: 2024-02-06
QID 997130: NodeJs (Npm) Security Update for stimulsoft-dashboards-js (GHSA-9m6m-c64r-w4f4)
Cross Site Scripting vulnerability in Stimulsoft GmbH Stimulsoft Dashboard.JS before v.2024.1.2 allows a remote attacker to execute arbitrary code via a crafted payload to the search bar component.
Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.
Solution
Refer to Github security advisory GHSA-9m6m-c64r-w4f4 for updates and patch information.
Vendor References
- GHSA-9m6m-c64r-w4f4 -
github.com/advisories/GHSA-9m6m-c64r-w4f4
CVEs related to QID 997130
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| GHSA-9m6m-c64r-w4f4 | stimulsoft-dashboards-js |
|