Lucene search
Svg Loader Security Vulnerabilities
cve
SVG Loader is a javascript library that fetches SVGs using XMLHttpRequests and injects the SVG code in the tag's place. According to the docs, svg-loader will strip all JS code before injecting the SVG file for security reasons but the input sanitization logic is not sufficient and can be trivially...
7.1CVSS
5.2AI Score
0.001EPSS
2023-08-14 09:15 PM
39