scratch-svg-renderer is a code library used by the Scratch team to convert SVG to DOM elements. scratch-Svg-Renderer suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data in WEB applications, which can be exploited to execute client-side code.
CPE | Name | Operator | Version |
---|---|---|---|
scratch scratch-svg-renderer | eq | 0.2.0 |