2018-06-04 19:00:00
hackerone
PUBLISHED
html-janitor node module suffers from a Cross-Site Scripting (XSS) vulnerability via clean() accepting user-controlled values.