The serialize-to-js NPM package before version 3.0.1 is vulnerable to Cross-site Scripting (XSS). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
XSS
Node.js
Serialize To Js
NVD
GitHub
CVSS 3.1
6.1
EPSS
0.6%