Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
tag.ex in Phoenix Phoenix.HTML (aka phoenix_html) before 3.0.4 allows XSS in HEEx class attributes.
Advisories for Npm/Phoenix_html package
2023
tag.ex in Phoenix Phoenix.HTML (aka phoenix_html) before 3.0.4 allows XSS in HEEx class attributes.