A XSS vulnerability was found in module public <0.1.4 that allows malicious Javascript code to run in the browser, due to the absence of sanitization of the file/folder names before rendering.
{
"github_reviewed_at": "2020-06-16T21:17:59Z",
"nvd_published_at": null,
"github_reviewed": true,
"cwe_ids": [
"CWE-79"
],
"severity": "MODERATE"
}