Daniel Fritsch

Name of the Vulnerable Software and Affected Versions: Sencha Ext JS versions 4 through 6.5.3 Description: The issue concerns the getTip() method of Action Columns, which is susceptible to cross-site scripting (XSS) attacks. This occurs even when HTML-escaped data is passed, as the method un-escapes the data. If the tooltip contains user-controlled data, an attacker could exploit this to create an XSS attack, despite developers taking precautions to escape the data. Recommendations: For Sencha Ext JS versions 4 through 6.5.3, ensure that all data passed to the getTip() method of Action Columns is correctly sanitized to prevent XSS attacks. As a temporary workaround, consider disabling the use of user-controlled data in tooltips until a patch is available. Update to version 6.6.0 or later to resolve the issue.