Severity: high

Cross-Site Scripting

metascraper

Overview

Versions of metascraper prior to 5.3.0 are vulnerable to stored cross-site scripting (XSS).

Remediation

Upgrade to version 5.3.0 or later.

Resources

Have content suggestions? Send them to [email protected]

Advisory timeline

  1. published

    Advisory published
    Apr 25th, 2018
  2. reported

    Initial report by _ bl4de
    Apr 24th, 2018