VYPR

npm package

fuelux

pkg:npm/fuelux

Vulnerabilities (1)

  • CVE-2016-1000235higSep 1, 2020
    affected < 3.15.7fixed 3.15.7

    Affected versions of `fuelux` contain a cross-site scripting vulnerability in the Pillbox feature. By supplying a script as a value for a new pillbox, it is possible to cause arbitrary script execution. ## Recommendation Update to version 3.15.7 or later.