GHSA-2V5F-23XC-V9QR ansi_up cross-site scripting vulnerability

The npm package ansiup converts ANSI escape codes into HTML. In ansiup v4, ANSI escape codes can be used to create HTML hyperlinks. Due to insufficient URL sanitization, this feature is affected by a cross-site scripting XSS vulnerability. This issue is fixed in v5.0.0...

Cross-site Scripting(XSS)

node-ansi-up:sid is vulnerable to cross-site scripting XSS. ANSI escape codes can be used to create HTML hyperlinks due to insufficient URL sanitization...

CVE-2021-3377

The npm package ansiup converts ANSI escape codes into HTML. In ansiup v4, ANSI escape codes can be used to create HTML hyperlinks. Due to insufficient URL sanitization, this feature is affected by a cross-site scripting XSS vulnerability. This issue is fixed in v5.0.0...

CVE-2021-3377

The npm package ansiup converts ANSI escape codes into HTML. In ansiup v4, ANSI escape codes can be used to create HTML hyperlinks. Due to insufficient URL sanitization, this feature is affected by a cross-site scripting XSS vulnerability. This issue is fixed in v5.0.0...

ansi_up 跨站脚本漏洞

Dru Nelson ansiup is a Dru Nelson open source application. Ansiup is an open source application Dru Nelson that converts text containing ANSI color escapes to HTML. A security vulnerability exists in ansiup v4, which can be exploited to create HTML hyperlinks from ansi escape code...