VYPR

npm package

ghtml

pkg:npm/ghtml

Vulnerabilities (1)

  • CVE-2024-37166HigJun 10, 2024
    affected < 2.0.0fixed 2.0.0

    ghtml is software that uses tagged templates for template engine functionality. It is possible to introduce user-controlled JavaScript code and trigger a Cross-Site Scripting (XSS) vulnerability in some cases. Version 2.0.0 introduces changes to mitigate this issue. Version 2.0.0