4 matches found
CVE-2023-30792
Anchor tag hrefs in Lexical prior to v0.10.0 would render javascript: URLs, allowing for cross-site scripting on link clicks in cases where input was being parsed from untrusted sources...
CVE-2023-30792
The CVE-2023-30792 issue affects Meta Platforms Lexical versions prior to 0.10.0, where anchor tag hrefs render javascript: URLs when parsing input from untrusted sources, enabling cross-site scripting on link clicks. The vulnerability stems from unsanitized hrefs in anchor elements (createDOM pa...
CVE-2023-30792
Anchor tag hrefs in Lexical prior to v0.10.0 would render javascript: URLs, allowing for cross-site scripting on link clicks in cases where input was being parsed from untrusted sources...
CVE-2023-30792
Anchor tag hrefs in Lexical prior to v0.10.0 would render javascript: URLs, allowing for cross-site scripting on link clicks in cases where input was being parsed from untrusted sources...