Reflected cross-site scripting (XSS) In jquery.json-viewer
Description
Cross-site Scripting in jquery.json-viewer The jquery.json-viewer library before version 1.5.0 for Node.js does not properly escape characters such as < in a JSON object, as demonstrated by a SCRIPT element.
Mitigation
Update Impact
Minimal update. May introduce new vulnerabilities or breaking changes.
Ecosystem | Package | Affected version | Patched versions |
|---|---|---|---|
 npm | 1.5.0 |
Aliases
1. 2. 3. 4.
References
1. 2. 3.