1 matches found
AZL-27818 CVE-2023-3978 affecting package vitess for versions less than 17.0.7-1
Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could lead to an XSS attack...