Advisories for Npm/React package

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in react.

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in react.

React applications which rendered to HTML using the ReactDOMServer API were not escaping user-supplied attribute names at render-time. That lack of escaping could lead to a cross-site scripting vulnerability.