Bootstrap Table Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2022-1726 - Vulnerability Database

Bootstrap Table Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2022-1726

Medium
Reference: CVE-2022-1726
Title: Bootstrap Table Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to 1.20.2. Disclosing session cookies disclosing secure session data exfiltrating data to third-parties.