icplayer 跨站脚本漏洞

icplayer is icplayer open source HTML5 player for an interactive course. A cross-site scripting vulnerability exists in versions prior to icplayer 0.819, which stems from a problem with the file addons/Commons/src/tts-utils.js, which can lead to cross-site scripting...