Source |
CVE Liste |
Identifiant |
8370647 |
Date de publication |
2023-08-16 05:15:09 (vue: 2023-08-16 11:06:59) |
Titre |
CVE-2023-26140 |
Texte |
Les versions du package @ Excalidraw / Excalidraw de 0.0.0 sont vulnérables aux scripts inter-sites (XSS) via des liens intégrés dans des objets de tableau blanc en raison d'une désinfection d'entrée incorrecte.
Versions of the package @excalidraw/excalidraw from 0.0.0 are vulnerable to Cross-site Scripting (XSS) via embedded links in whiteboard objects due to improper input sanitization. |
Envoyé |
Oui |
Condensat |
2023 26140 @excalidraw/excalidraw are cross cve due embedded from improper input links objects package sanitization scripting site versions vulnerable whiteboard xss |
Tags |
|
Stories |
|
Notes |
|
Move |
|