preact 安全漏洞

preact is a Java library from Preact open source. A security vulnerability exists in preact version 10.26.5, which stems from weakened JSON serialization protection and could lead to HTML injection...

Preact has JSON VNode Injection issue

Impact Vulnerability Type: HTML Injection via JSON Type Confusion Affected Versions: Preact 10.26.5 through 10.28.1 Severity: Low to Medium see below Who is Impacted? Applications using affected Preact versions are vulnerable if they meet all of the following conditions: 1. Pass unmodified,...