0.001 Low
EPSS
Percentile
46.4%
sanitize-html is vulnerable to cross-site scripting (XSS) attacks. These attacks are possible through the use of double quotes.
github.com/punkave/sanitize-html/issues/19
github.com/punkave/sanitize-html/pull/20
nodesecurity.io/advisories/155