backdrop/backdrop is vulnerable to cross-site scripting. The vulnerability exists due to the lack of sanitization in the Card
content in the library, allowing an attacker to inject and execute malicious javascript.
CPE | Name | Operator | Version |
---|---|---|---|
backdrop/backdrop | le | 1.22.2 | |
backdrop/backdrop | le | 1.22.2 |