EPSS
Percentile
49.6%
smoothie is vulnerable to cross-site scripting. The vulnerability exists in multiple functions in smoothie.js because user inputs are not properly sanitized which allows an attacker to inject and execute arbitrary JavaScript.
smoothie.js
github.com/advisories/GHSA-g662-qq45-ppwm
github.com/joewalnes/smoothie/commit/8e0920d50da82f4b6e605d56f41b69fbb9606a98
github.com/joewalnes/smoothie/pull/147