Tagify Project: >> Tagify >> 2.10.1 Security Vulnerabilities
This affects the package @yaireo/tagify before 4.9.8. The package is used for rendering UI components inside the input or text fields, and an attacker can pass a malicious placeholder value to it to fire the XSS payload.
CVSS Score
5.4
EPSS Score
0.007
Published
2022-04-29