We found results for “


Good to know:


Date: August 10, 2016

In google/closure-library, v20160106 to v20160713 there is a potential vulnerability due to insufficient validation, that could lead to a src URL being assigned to an element that’s not of the correct type. An attacker can pass dangerous elements that will cause disclosure of sensitive data.

Language: Java

Severity Score

Severity Score

Weakness Type (CWE)

Input Validation


Top Fix


Upgrade Version

Upgrade to version v20160822

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): LOCAL
Attack Complexity (AC): HIGH
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): CHANGED
Confidentiality (C): HIGH
Integrity (I): NONE
Availability (A): NONE

Do you need more information?

Contact Us