Sencha Ext Js vulnerabilities
2 known vulnerabilities affecting sencha/ext_js.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-8046P3MEDIUMCVSS 6.1≥ 4.0.0, < 6.6.02018-07-05
CVE-2018-8046 [MEDIUM] CWE-79 CVE-2018-8046: The getTip() method of Action Columns of Sencha Ext JS 4 to 6 before 6.6.0 is vulnerable to XSS atta
The getTip() method of Action Columns of Sencha Ext JS 4 to 6 before 6.6.0 is vulnerable to XSS attacks, even when passed HTML-escaped data. This framework brings no built-in XSS protection, so the developer has to ensure that data is correctly sanitized. However, the getTip() method of Action Columns takes HTML-escaped data and un-escapes it. If the t
nvd
CVE-2007-6758P3HIGHCVSS 7.5v5.0.02020-01-23
CVE-2007-6758 [HIGH] CWE-918 CVE-2007-6758: Server-side request forgery (SSRF) vulnerability in feed-proxy.php in extjs 5.0.0.
Server-side request forgery (SSRF) vulnerability in feed-proxy.php in extjs 5.0.0.
nvd