← volver
CVE-2021-3377

CVE-2021-3377

18Vexday Risk Score

Corrige pronto. Ella tiene exploit funcional público.

ssvc Attendepss 8.0%
probabilidad de explotación
8.0%top 6% de las CVE
explotación observada
noninguna fuente lo reporta
The npm package ansi_up converts ANSI escape codes into HTML. In ansi_up v4, ANSI escape codes can be used to create HTML hyperlinks. Due to insufficient URL sanitization, this feature is affected by a cross-site scripting (XSS) vulnerability. This issue is fixed in v5.0.0.
Productos afectados
n/a · n/a