Cross-Site Scripting (XSS)

Overview

apexcharts is a modern JavaScript charting library to build interactive charts and visualizations with simple API. Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via lack of sanitization of graph legend fields.

Recommendation

Upgrade to version 3.24.0 or later.

References

• Snyk Advisory
• GitHub Advisory
• CVE