GMS-2019-47: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

May 31, 2019 (updated August 4, 2021)

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in react-svg.

References

github.com/advisories/GHSA-8xqr-4cpm-wx7g
github.com/tanem/react-svg/pull/57
github.com/tanem/react-svg/pull/57/commits/ec7de5d678f53a085cee1348cb1aa069c9fc42fb
nodesecurity.io/advisories/648
www.npmjs.com/advisories/648

Code Behaviors & Features

Detect and mitigate GMS-2019-47 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →