GHSA-P5CM-246W-84JM Wagtail Vulnerable to Cross-site Scripting in TableBlock class attributes
Impact A stored Cross-site Scripting XSS vulnerability exists on rendering TableBlock blocks within a StreamField. A user with access to create or edit pages containing TableBlock StreamField blocks is able to set specially-crafted class attributes on the block which run arbitrary JavaScript code...