CVE-2018-8046: XSS
First published: Thu Jul 05 2018(Updated: )
The getTip() method of Action Columns of Sencha Ext JS 4 to 6 before 6.6.0 is vulnerable to XSS attacks, even when passed HTML-escaped data. This framework brings no built-in XSS protection, so the developer has to ensure that data is correctly sanitized. However, the getTip() method of Action Columns takes HTML-escaped data and un-escapes it. If the tooltip contains user-controlled data, an attacker could exploit this to create a cross-site scripting attack, even when developers took precautions and escaped data.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sencha Ext JS | >=4.0.0<6.6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2018-8046.
What is the severity of CVE-2018-8046?
The severity of CVE-2018-8046 is medium with a severity value of 6.1.
Which versions of Sencha Ext JS are affected by this vulnerability?
The versions 4 to 6, before version 6.6.0, of Sencha Ext JS are affected by this vulnerability.
What type of vulnerability is CVE-2018-8046?
CVE-2018-8046 is a cross-site scripting (XSS) vulnerability.
How can I protect my application from this vulnerability?
To protect your application from CVE-2018-8046, you should ensure that data passed to the getTip() method of Action Columns in Sencha Ext JS is correctly sanitized to prevent XSS attacks.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/weakness
- vendor/sencha
- canonical/sencha ext js
- version/sencha ext js/4.0.0