Description
In Materialize through 1.0.0, XSS is possible via the Autocomplete feature.
Remediation
References
https://github.com/Dogfalo/materialize/issues/6286
Related Vulnerabilities
CVE-2020-27665 Vulnerability in npm package strapi-plugin-content-type-builder
CVE-2023-37263 Vulnerability in npm package @strapi/plugin-content-manager
CVE-2020-7660 Vulnerability in maven package org.webjars.npm:serialize-javascript
CVE-2021-21166 Vulnerability in maven package org.webjars.npm:electron
CVE-2020-9484 Vulnerability in maven package org.apache.tomcat:tomcat-catalina