3 matches found
Malicious code in grafana__slate-react (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-2434 Malicious code in grafana__slate-react (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2023-34245 Cross site scripting (XSS) in @udecode/plate-link
@udecode/plate-link is the link handler for the udecode/plate rich-text editor plugin system for Slate & React. Affected versions of the link plugin and link UI component do not sanitize URLs to prevent use of the javascript: scheme. As a result, links with JavaScript URLs can be inserted into th...