2 matches found
Cross-site Scripting (XSS)
express-useragent is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the lack of sanitization of the user-agent header, allowing XSS attacks to occur...