Description
In Materialize through 1.0.0, XSS is possible via the Tooltip feature.
Remediation
References
https://github.com/Dogfalo/materialize/issues/6286
Related Vulnerabilities
CVE-2021-28162 Vulnerability in npm package @wiptheia/core
CVE-2021-23341 Vulnerability in maven package org.webjars:prismjs
CVE-2021-41174 Vulnerability in npm package @grafana/data
CVE-2014-6394 Vulnerability in npm package send
CVE-2022-45470 Vulnerability in maven package org.apache.hama:hama-core