CVE-2020-23849

Identifiers

CVE-2020-23849

Package Slug

npm/jsoneditor

Vulnerability

Cross-site Scripting

Description

Stored XSS was discovered in the tree mode of jsonedit through injecting and executing JavaScript.

Affected Versions

All versions starting from 8.6.6 before 9.0.2

Solution

Upgrade to version 9.0.2 or above.

Last Modified

2021-01-15