html-to-csv@0.1.2 vulnerabilities

A utility that extracts tables from HTML documents and converts them to CSV format

Direct Vulnerabilities

Known vulnerabilities in the html-to-csv package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Improper Input Validation

html-to-csv is an utility that extracts tables from HTML documents and converts them to CSV format

Affected versions of this package are vulnerable to Improper Input Validation. When there is a formula embedded in a HTML page, it gets accepted without any validation and the same would be pushed while converting it into a CSV file. Through this a malicious actor can embed or generate a malicious link or execute commands via CSV files.

How to fix Improper Input Validation?

There is no fixed version for html-to-csv.

[0,)