Required CVE Record Information
Description
Cross Site Scripting vulnerability in BootBox Bootbox.js v.3.2 through 6.0 allows a remote attacker to execute arbitrary code via a crafted payload to alert(), confirm(), prompt() functions.
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 2 Total
- https://github.com/bootboxjs/bootbox/issues/661 x_transferred
- https://github.com/soy-oreocato/CVE-2023-46998/ x_transferred