Cross-site Scripting (XSS) Vulnerability in ag-grid when used with AngularJS

Cross-site Scripting (XSS) Vulnerability in ag-grid when used with AngularJS

CVE-2017-16009 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

ag-grid is an advanced data grid that is library agnostic. ag-grid is vulnerable to Cross-site Scripting (XSS) via Angular Expressions, if AngularJS is used in combination with ag-grid.

Learn more about our Web Application Penetration Testing UK.