Cross-Site Scripting

2016-11-28T16:06:21
ID NODEJS:159
Type nodejs
Reporter Björn Kimminich
Modified 2019-06-24T15:02:17

Description

Overview

Affected versions of gitbook do not properly sanitize user input outside of backticks, which may result in cross-site scripting in the online reader.

Recommendation

Update to version 3.2.2 or later.

References