EPSS
Percentile
42.6%
tianma-static is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists as it does not sanitize filenames, allowing filenames to be used as a vector for XSS attacks.
hackerone.com/reports/403692