CVE-2023-30792

Publication date

2023-04-29 02:21:49

Family

facebook

State

PUBLISHED

Description

Anchor tag hrefs in Lexical prior to v0.10.0 would render javascript: URLs, allowing for cross-site scripting on link clicks in cases where input was being parsed from untrusted sources.