EPSS
Percentile
49.3%
sysend is vulnerable to information disclosure. Remote unauthenticated attackers are able to intercept user communications when the cross-origin communication is used in the same browser, resulting in disclosure of sensitive information.
github.com/jcubic/sysend.js/commit/a24f4b776fb18191ae0f7e3d90c2c7bec459431a
github.com/jcubic/sysend.js/issues/33
github.com/jcubic/sysend.js/releases/tag/1.10.0
github.com/jcubic/sysend.js/security/advisories/GHSA-4vvg-x86p-mvqc