Cross-site Scripting
A stored xss in tianma-static module versions allows an attacker to execute arbitrary javascript.
Advisories for Npm/Tianma-Static package
2018
A stored xss in tianma-static module versions allows an attacker to execute arbitrary javascript.