Lucene search
GoogleOSV:CVE-2016-10537HistoryMay 31, 2018 - 8:29 p.m.
CVE-2016-10537
2018-05-3120:29:01
Google
osv.dev
9
0.0005 Low
EPSS
Percentile
18.4%
backbone is a module that adds in structure to a JavaScript heavy application through key-value pairs and custom events connecting to your RESTful API through JSON There exists a potential Cross Site Scripting vulnerability in the Model#Escape function of backbone 0.3.3 and earlier, if a user is able to supply input. This is due to the regex that’s replacing things to miss the conversion of things such as < to <.
Related
osv
osv
Cross-Site Scripting in backbone
2019-02-18 23:39:55
cvelist
cvelist
CVE-2016-10537
2018-04-26 00:00:00
nodejs
nodejs
Cross-Site Scripting
2016-05-05 21:21:09
ubuntucve
ubuntucve
CVE-2016-10537
2018-05-31 00:00:00
cve
cve
CVE-2016-10537
2018-05-31 20:29:01
github
github
Cross-Site Scripting in backbone
2019-02-18 23:39:55
debiancve
debiancve
CVE-2016-10537
2018-05-31 20:29:01
prion
prion
Cross site scripting
2018-05-31 20:29:00
nvd
nvd
CVE-2016-10537
2018-05-31 20:29:01
