html_to_csv is vulnerble to cross-site scripting. The vulnerability exists through the formula embedded in a HTML page does not properly validate the input, allowing an attacker to embed or generate a malicious link or execute commands via CSV files.
CPE | Name | Operator | Version |
---|---|---|---|
html-to-csv | le | 0.1.3 | |
html-to-csv | le | 0.1.3 |