Advisories for Npm/Redis-Commander package

2020
2018

Reflected Cross-Site Scripting

Malicious input in the highlighterId parameter of the clipboard.swf component can be leveraged in a reflected XSS on hosts serving Redis Commander. Mitigating factors: Flash must be installed/enabled for this to work.