Vulnerabilities/

Layui cross-site scripting (XSS) vulnerability

Severity:
Medium

Description

layui up to v2.74 was discovered to contain a cross-site scripting (XSS) vulnerability via the data-content parameter.

Recommendation

Update the layui package to the latest compatible version. Followings are version details:

References

Related Issues

Tags:
npm
layui
Anything's wrong? Let us know Last updated on January 08, 2024

This issue is available in SmartScanner Professional

See Pricing