VYPR

npm package

shout

pkg:npm/shout

Vulnerabilities (1)

  • CVE-2017-16043MedJun 4, 2018
    affected >= 0.44.0, < 0.50.0fixed 0.50.0

    Shout is an IRC client. Because the `/topic` command in messages is unescaped, attackers have the ability to inject HTML scripts that will run in the victim's browser. Affects shout >=0.44.0 <=0.49.3.