Filtered by vendor Vaadin Subscriptions
Filtered by product Vaadin-menu-bar Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-33611 1 Vaadin 2 Vaadin, Vaadin-menu-bar 2024-11-21 6.1 Medium
Missing output sanitization in test sources in org.webjars.bowergithub.vaadin:vaadin-menu-bar versions 1.0.0 through 1.2.0 (Vaadin 14.0.0 through 14.4.4) allows remote attackers to execute malicious JavaScript in browser by opening crafted URL