hexo-theme-anzhiyu@1.4.1 vulnerabilities

A Simple and Card UI Design theme for Hexo

latest version

1.6.12
first published

a year ago
latest version published

5 months ago
licenses detected
- Apache-2.0
  >=1.0.0 <1.6.4
View hexo-theme-anzhiyu package health on Snyk Advisor Open this link in a new tab

Known vulnerabilities in the hexo-theme-anzhiyu package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Cross-site Scripting (XSS) hexo-theme-anzhiyu is an A Simple and Card UI Design theme for Hexo Affected versions of this package are vulnerable to Cross-site Scripting (XSS) in the algolia search functionality. An attacker can execute arbitrary code by injecting malicious scripts. How to fix Cross-site Scripting (XSS)? There is no fixed version for `hexo-theme-anzhiyu`.	*