Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-28162

Disclosure Date: March 12, 2021 (last updated February 22, 2025)
In Eclipse Theia versions up to and including 0.16.0, in the notification messages there is no HTML escaping, so Javascript code can run.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0