trix is vulnerable to Cross-site Scripting (XSS)
45
Medium Risk
Affected versions of the package allow attackers to execute Cross-site Scripting (XSS) attacks by pasting malicious code into a Trix editor.
You are affected if you are using a version that falls within the vulnerable range.
trix is vulnerable to Cross-site Scripting (XSS) in versions 2.0.0 - 2.1.3.
Upgrade the trix library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

I consent to receiving marketing communications based on Aikido’s Privacy Policy.
SOC 2Compliant
ISO 27001Compliant