npm package

c3

pkg:npm/c3

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2016-1000240	med	—		< 0.4.11	0.4.11	Sep 1, 2020	Affected versions of `c3` are vulnerable to cross-site scripting via improper sanitization of HTML in rendered tooltips. ## Recommendation Update to 0.4.11 or later.

CVE-2016-1000240medSep 1, 2020
affected < 0.4.11fixed 0.4.11
Affected versions of `c3` are vulnerable to cross-site scripting via improper sanitization of HTML in rendered tooltips. ## Recommendation Update to 0.4.11 or later.