CVE-2021-30074

Cross-site Scripting in npm/docsify

Identifiers

CVE-2021-30074

Package Slug

npm/docsify

Vulnerability

Cross-site Scripting

Description

docsify is affected by Cross Site Scripting (XSS) because the search component does not appropriately encode Code Blocks and mishandles the " character.

Affected Versions

Version 4.12.1

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-04-10

source