@berslucas/liljs@1.0.1 vulnerabilities

A DOM-driven micro-framework for Javascript applications

Direct Vulnerabilities

Known vulnerabilities in the @berslucas/liljs package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Cross-site Scripting (XSS)

@berslucas/liljs is a DOM-driven micro-framework for JavaScript applications.

Affected versions of this package are vulnerable to Cross-site Scripting (XSS) due to unsafe usage of innerHTML instead of treating user input as textContent.

How to fix Cross-site Scripting (XSS)?

Upgrade @berslucas/liljs to version 1.0.2 or higher.

<1.0.2