CVE-2021-23445
npm/datatables.net
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
This affects the package datatables.net If an array is passed to the HTML escape entities function it would not have its contents escaped.
All versions before 1.11.3
Upgrade to version 1.11.3 or above.
2021-10-13
source |