Lucene search
Veracode Vulnerability DatabaseVERACODE:28863HistoryDec 31, 2020 - 7:59 a.m.
Cross-Site Scripting (XSS)
2020-12-3107:59:42
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
41.3%
vega is vulnerable to cross-site scripting (XSS). A remote attacker is able to inject and execute arbitrary Javascript in a user’s browser via a malicious Vega expression.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vega-expression | le | 4.0.1 | |
| vega-expression | le | 4.0.1 |
Related
redhatcve
redhatcve
CVE-2020-26296
2021-02-10 21:43:50
nvd
nvd
CVE-2020-26296
2020-12-30 23:15:15
github
github
XSS in Vega
2020-12-30 23:09:21
openvas
openvas
cvelist
cvelist
CVE-2020-26296 XSS in Vega
2020-12-30 23:10:16
prion
prion
Format string
2020-12-30 23:15:00
osv
osv
CVE-2020-26296
2020-12-30 23:15:15
XSS in Vega
2020-12-30 23:09:21
cve
cve
CVE-2020-26296
2020-12-30 23:15:15
