tui-grid

vulnerability reflected cross site scripting
severity 7.5
language typescript
registry npm

✍️ Description

tui.grid is vulnerable to reflected Cross-Site Scripting (XSS)

🕵️‍♂️ Proof of Concept

Open any example ````https://nhn.github.io/tui.grid/latest/tutorial-example09-summary Edit any Score filed value relapse with Payload :- 55'<img src=x onerror=alert(1)> ``` XSS payload will get executed.

💥 Impact

reflected Cross-Site Scripting (XSS)