Skip to main content

Materialize CSS

4 CVEs framework

Monthly

CVE-2022-25349 npm MEDIUM POC This Month

All versions of package materialize-css are vulnerable to Cross-site Scripting (XSS) due to improper escape of user input (such as <not-a-tag />) that is being parsed as HTML/JavaScript, and. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Materialize CSS
NVD GitHub
CVSS 3.1
5.4
EPSS
1.0%
CVE-2019-11004 npm MEDIUM POC PATCH This Month

In Materialize through 1.0.0, XSS is possible via the Toast feature. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Materialize CSS
NVD GitHub
CVSS 3.0
6.1
EPSS
0.8%
CVE-2019-11003 npm MEDIUM POC PATCH This Month

In Materialize through 1.0.0, XSS is possible via the Autocomplete feature. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Materialize CSS
NVD GitHub
CVSS 3.0
6.1
EPSS
0.8%
CVE-2019-11002 npm MEDIUM POC PATCH This Month

In Materialize through 1.0.0, XSS is possible via the Tooltip feature. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Materialize CSS
NVD GitHub
CVSS 3.0
6.1
EPSS
0.8%
EPSS 1% CVSS 5.4
MEDIUM POC This Month

All versions of package materialize-css are vulnerable to Cross-site Scripting (XSS) due to improper escape of user input (such as <not-a-tag />) that is being parsed as HTML/JavaScript, and. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Materialize CSS
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM POC PATCH This Month

In Materialize through 1.0.0, XSS is possible via the Toast feature. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Materialize CSS
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM POC PATCH This Month

In Materialize through 1.0.0, XSS is possible via the Autocomplete feature. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Materialize CSS
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM POC PATCH This Month

In Materialize through 1.0.0, XSS is possible via the Tooltip feature. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Materialize CSS
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy