VYPR

Jqtree

by Mbraak

npm: jqtree

Source repositories

CVEs (1)

  • CVE-2016-1000234higSep 1, 2020
    risk 0.46cvss epss 0.01

    Affected versions of `jqtree` are vulnerable to cross-site scripting in the drag and drop functionality for modifying tree data. When a user attempts to drag a node to a different position in the hierarchy, script content existing within the node will be executed. ##…