Datatables: Security Vulnerabilities
This affects the package datatables.net before 1.11.3. If an array is passed to the HTML escape entities function it would not have its contents escaped.
CVSS Score
3.1
EPSS Score
0.005
Published
2021-09-27
All versions of package datatables.net are vulnerable to Prototype Pollution due to an incomplete fix for https://snyk.io/vuln/SNYK-JS-DATATABLESNET-598806.
CVSS Score
7.3
EPSS Score
0.01
Published
2020-12-16