joewalnes/smoothie

Releases55

Frequency2 months 2 weeks

Last Release almost 4 years ago

Stars2.28K

Smoothie Charts: smooooooth JavaScript charts for realtime streaming data

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-25929 ↗	Dec 21, 2022Wednesday, 21 December 2022, 05:15	5.4 MEDIUM	—
The package smoothie from 1.31.0 and before 1.36.1 are vulnerable to Cross-site Scripting (XSS) due to improper user input sanitization in strokeStyle and tooltipLabel properties. Exploiting this vulnerability is possible when the user can control these properties.