🚨 Potential Cross-site Scripting (XSS) - Reflected (CWE-79)

Question

🚨 Potential Cross-site Scripting (XSS) - Reflected (CWE-79)

huntr-helper opened this issue 3 years ago · 1 comments

👋 Hello, @bantic, @mixonic, @ZeeJab - a potential critical severity Cross-site Scripting (XSS) - Reflected (CWE-79) vulnerability in your repository has been disclosed to us.

Next Steps

1️⃣ Visit https://huntr.dev/bounties/2-other-bustle/mobiledoc-kit for more advisory information.

2️⃣ Sign-up to validate or speak to the researcher for more assistance.

3️⃣ Propose a patch or outsource it to our community - whoever fixes it gets paid.

Confused or need more help?

Join us on our Discord and a member of our team will be happy to help! 🤗
Speak to a member of our team: @JamieSlome

This issue was automatically generated by huntr.dev - a bug bounty board for securing open source code.

Answer 1 · 2022-08-11T15:51:12.000Z

https://github.com/bustle/mobiledoc-kit/blob/master/SECURITY.md