CVE-2017-1000006
Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an XSS issue.
6.1CVSS
5.9AI Score
0.001EPSS
CVE-2023-46308
In Plotly plotly.js before 2.25.2, plot API calls have a risk of proto being polluted in expandObjectPaths or nestedProperty.
9.8CVSS
9.3AI Score