graphql-playground-react is vulnerable to cross-site scripting. The vulnerability exists due to the lack of sanitization in onHasCompletion.js
allowing an attacker to inject and execute malicious javascript.
CPE | Name | Operator | Version |
---|---|---|---|
graphql-playground-react | le | 1.7.27 | |
graphql-playground | le | 1.3.17 | |
graphql-playground-react | le | 1.7.27 | |
graphql-playground | le | 1.3.17 |