CVE-2022-1575 Stored XSS attack in versions < 18.0.0 #77
davidjgraph
started this conversation in
General
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
See jgraph/drawio#2791
We strongly recommend that you use a strict CSP when deploying this project, it will prevent the vast majority of such attacks.
Beta Was this translation helpful? Give feedback.
All reactions