Submit #515869: https://www.npmjs.com/package/dante3 dante3 * Cross Site Scriptinginfo

Titlehttps://www.npmjs.com/package/dante3 dante3 * Cross Site Scripting
DescriptionAffected versions of this package are vulnerable to Cross-site Scripting (XSS) via the insert link component, allowing an attacker to obtain sensitive information by sending a specially crafted payload.
Source⚠️ https://gist.github.com/Masamuneee/3be24bf5bf2b09dc61ead2af89363f86
User
 masamune (UID 79684)
Submission03/07/2025 04:08 AM (1 Year ago)
Moderation03/23/2025 07:03 PM (17 days later)
StatusAccepted
VulDB entry300717 [michelson Dante Editor up to 0.4.4 Insert Link cross site scripting]
Points16

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!