VYPR

npm package

fabric

pkg:npm/fabric

Vulnerabilities (1)

  • CVE-2026-27013Feb 19, 2026
    affected < 7.2.0fixed 7.2.0

    Fabric.js is a Javascript HTML5 canvas library. Prior to version 7.2.0, Fabric.js applies `escapeXml()` to text content during SVG export (`src/shapes/Text/TextSVGExportMixin.ts:186`) but fails to apply it to other user-controlled string values that are interpolated into SVG attr