Vulnerabilities > Vega Functions Project > Vega Functions > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-03-04 | CVE-2023-26486 | Cross-site Scripting vulnerability in multiple products Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. | 6.1 |
2023-03-04 | CVE-2023-26487 | Cross-site Scripting vulnerability in multiple products Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs.`lassoAppend' function accepts 3 arguments and internally invokes `push` function on the 1st argument specifying array consisting of 2nd and 3rd arguments as `push` call argument. | 6.1 |