Headline
GHSA-2r57-2mrh-ggjv: ydata cross-site scripting
A cross-site scripting (XSS) vulnerability in versions 3.7.0 or newer of Ydata’s ydata-profiling open-source library allows for payloads to be run when a maliocusly crafted report is viewed in the browser.
ydata cross-site scripting
High severity GitHub Reviewed Published Jun 4, 2024 to the GitHub Advisory Database • Updated Jun 5, 2024