CVE-2021-28162
CVE-2021-28162
In Eclipse Theia versions up to and including 0.16.0, in the notification messages there is no HTML escaping, so Javascript code can run.
Affected products
The Eclipse Foundation · Eclipse TheiaWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →