CVE-2023-0410

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in npm/@builder.io/qwik

Identifiers

GHSA-hm7f-rq7q-j9xp, CVE-2023-0410

Package Slug

npm/@builder.io/qwik

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

Cross-site Scripting (XSS) - Generic in GitHub repository builderio/qwik prior to 0.1.0-beta5.

Affected Versions

All versions before 0.16.2

Solution

Upgrade to version 0.16.2 or above.

Last Modified

2023-01-23

source