Lichess: Security Vulnerabilities
powertip.ts in Lila (for Lichess) before ab0beaf allows XSS in some applications because of an innerHTML usage pattern in which text is extracted from a DOM node and interpreted as HTML.
CVSS Score
4.7
EPSS Score
0.001
Published
2025-05-15