Cross-site Scripting
This affects the package vis-timeline An attacker with the ability to control the items of a Timeline element can inject additional script code into the generated application.
Advisories for Npm/Vis-Timeline package
2021
This affects the package vis-timeline An attacker with the ability to control the items of a Timeline element can inject additional script code into the generated application.