All versions of
eco are vulnerable to Cross-Site Scripting (XSS). The package's default
No fix is currently available. Consider using an alternative package until a fix is made available.