CVE-2022-48345

@braintree/sanitize-url Cross-site Scripting vulnerability

Description

sanitize-url (aka @braintree/sanitize-url) before 6.0.1 allows XSS via HTML entities.

Patch Available

Fix available through Seal Security.  
No upgrade required, protect your application instantly.

Fix without upgrading

Score

Severity

Ecosystem

JavaScript

Publish Date

February 24, 2023

Modified Date

November 7, 2023

Score Vector

Affected Versions