Rewterz Threat Advisory – CVE-2021-23398 – Node.js react-bootstrap-table module

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

June 25, 2021

Rewterz Threat Advisory – CVE-2021-34506 – Microsoft Edge (Chromium-based) Vulnerability

June 28, 2021

Rewterz Threat Advisory – CVE-2021-23398 – Node.js react-bootstrap-table module

Severity

Medium

Analysis Summary

CVE-2021-23398

Node.js react-bootstrap-table module is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the dataFormat parameter. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

Impact

Cross-Site Scripting

Affected Vendors

Node.js

Affected Products

Node.js react-bootstrap-table 4.3.1

Remediation

Refer to Node.js Advisory for the patch, upgrade, or suggested workaround information.

https://snyk.io/vuln/SNYK-JS-REACTBOOTSTRAPTABLE-1314285

Rewterz Annual Threat Intelligence Report 2025 - Download Now

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Rewterz Threat Advisory – CVE-2021-34506 – Microsoft Edge (Chromium-based) Vulnerability

Rewterz Threat Advisory – CVE-2021-23398 – Node.js react-bootstrap-table module

Severity

Analysis Summary

CVE-2021-23398

Impact

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan