Product

@Tdurieux/Anonymous_github (Vulnerable: = 2.2.0)

1 brief RSS

Anonymous GitHub Vulnerable to XSS via Unsanitized GitHub Repository Content

The @tdurieux/anonymous_github application is vulnerable to cross-site scripting (XSS) because it renders unsanitized content from GitHub repositories, allowing a malicious GitHub repository to execute arbitrary JavaScript in the Anonymous GitHub origin.

github.com +1 xss github unsanitized-input client-side-vulnerability

2r 1t 1h ago