Cross-site Scripting (XSS)
Overview dbgate-web is a This package is used internally by DbGate Affected versions of this package are vulnerable to Cross-site Scripting XSS via the FontIcon component in packages/web/src/icons/FontIcon.svelte. An attacker can execute scripts in the user's browser by supplying a malicious SVG...