Description
All versions of md-data-table are vulnerable to cross-site scripting (XSS). This vulnerability is exploitable if an attacker has control over data that is rendered by mdt-row
Recommendation
No fix is available yet. Followings are affected versions:
- >= 0.0.0
References
Related Issues
- Bootstrap Cross-Site Scripting (XSS) vulnerability for data-* attributes - CVE-2024-6485
- vxe-table Cross-site Scripting vulnerability - CVE-2023-1001
- Bootstrap Cross-Site Scripting (XSS) vulnerability - CVE-2024-6531
- QMarkdown Cross-Site Scripting (XSS) vulnerability - CVE-2025-43954
- Tags:
- npm
- md-data-table
Anything's wrong? Let us know Last updated on January 09, 2023