Lucene search
Emoji Button Security Vulnerabilities
cve
@joeattardi/emoji-button is a Vanilla JavaScript emoji picker component. In affected versions there are two vectors for XSS attacks: a URL for a custom emoji, and an i18n string. In both of these cases, a value can be crafted such that it can insert a script tag into the page and execute malicious....
7.6CVSS
5.9AI Score
0.001EPSS
2021-11-26 07:15 PM
18