Description
In Materialize through 1.0.0, XSS is possible via the Tooltip feature.
Remediation
References
https://github.com/Dogfalo/materialize/issues/6286
Related Vulnerabilities
CVE-2020-36650 Vulnerability in npm package gry
CVE-2023-3672 Vulnerability in npm package webmention.js
CVE-2023-30529 Vulnerability in maven package org.jenkins-ci.plugins:lucene-search
CVE-2023-29516 Vulnerability in maven package org.xwiki.platform:xwiki-platform-attachment-ui
CVE-2022-31159 Vulnerability in maven package com.amazonaws:aws-java-sdk-s3