CVE-2022-25929 Cross-site Scripting (XSS)

The package smoothie from 1.31.0 and before 1.36.1 are vulnerable to Cross-site Scripting XSS due to improper user input sanitization in strokeStyle and tooltipLabel properties. Exploiting this vulnerability is possible when the user can control these properties...

CVE-2022-25929

The package smoothie from 1.31.0 and before 1.36.1 are vulnerable to Cross-site Scripting XSS due to improper user input sanitization in strokeStyle and tooltipLabel properties. Exploiting this vulnerability is possible when the user can control these properties...

Cross site scripting

The package smoothie from 1.31.0 and before 1.36.1 are vulnerable to Cross-site Scripting XSS due to improper user input sanitization in strokeStyle and tooltipLabel properties. Exploiting this vulnerability is possible when the user can control these properties...

smoothie 跨站脚本漏洞

smoothie is a smoooooth JavaScript chart for real-time streaming data by Joe Walnes, a personal developer. A security vulnerability exists in smoothie version 1.31.0 through versions prior to 1.36.1, which stems from a cross-site scripting XSS vulnerability due to improperly cleaned up user input...