Description
In Materialize through 1.0.0, XSS is possible via the Autocomplete feature.
Remediation
References
https://github.com/Dogfalo/materialize/issues/6286
Related Vulnerabilities
CVE-2023-26920 Vulnerability in maven package org.webjars.npm:fast-xml-parser
CVE-2020-7677 Vulnerability in npm package thenify
CVE-2021-21368 Vulnerability in npm package msgpack5
CVE-2022-25301 Vulnerability in npm package jsgui-lang-essentials
CVE-2023-51075 Vulnerability in maven package cn.hutool:hutool-core