AI Score
Confidence
High
EPSS
Percentile
37.2%
An issue was discovered in Valine v1.3.3. It allows HTML injection, which can be exploited for JavaScript execution via an EMBED element in conjunction with a .pdf file.
github.com/xCss/Valine/issues/127