Description
Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an XSS issue.
Remediation
References
http://help.plot.ly/security-advisories/2016-08-08-plotlyjs-xss-advisory/
Related Vulnerabilities
CVE-2018-12538 Vulnerability in maven package org.eclipse.jetty:jetty-server
CVE-2017-5638 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2014-0229 Vulnerability in maven package org.apache.hadoop:hadoop-hdfs
CVE-2014-7810 Vulnerability in maven package org.mortbay.jasper:apache-el
CVE-2020-17527 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core