Published
Last updated
NVD
6.1
CVSS CVSS_V3
Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could lead to an XSS attack.