CVE-2023-3620

MEDIUM4.6EPSS 0.14%

tarteaucitron.js vulnerable to Cross-site Scripting

Published: 7/11/2023Modified: 11/8/2023
Also known as:GHSA-f44m-65h3-99vc

Description

Cross-site Scripting (XSS) - Stored in GitHub repository amauric/tarteaucitron.js prior to v1.13.1.

Affected packages (1)

CVSS scores

SourceVersionSeverityVector
osvCVSS 3.1MEDIUM4.6CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

References (5)