Headline
CVE-2023-0410: huntr – Security Bounties for any GitHub repository
Cross-site Scripting (XSS) - Generic in GitHub repository builderio/qwik prior to 0.1.0-beta5.
Bounties 37
Related news
GHSA-hm7f-rq7q-j9xp: @builder.io/qwik vulnerable to Cross-site Scripting
@builder.io/qwik prior to version 0.16.2 is vulnerable to cross-site scripting due to attribute names and the class attribute values not being properly handled.