GHSA-649c-x44h-4q7v
GitHub Security Advisory
Tnantoka/public XSS Vulnerability
✓ GitHub Reviewed
MODERATE
Has CVE
Advisory Details
A XSS vulnerability was found in module public <0.1.4 that allows malicious Javascript code to run in the browser, due to the absence of sanitization of the file/folder names before rendering.
Affected Packages
npm
public
Affected versions:
0
(fixed in 0.1.4)
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: July 1, 2025 6:26 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.