GHSA-j3gg-r6gp-95q2

Suggest an improvement
Source
https://github.com/advisories/GHSA-j3gg-r6gp-95q2
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/04/GHSA-j3gg-r6gp-95q2/GHSA-j3gg-r6gp-95q2.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-j3gg-r6gp-95q2
Aliases
Published
2022-04-12T20:22:57Z
Modified
2023-11-08T04:07:27.432668Z
Summary
XSS in HEEx class attributes
Details

The class attribute was not protected against XSS attacks when using HEEx.

References

Affected packages

Hex / phoenix_html

Package

Name
phoenix_html
Purl
pkg:hex/phoenix_html

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.4