← Back to CVE List
CVE-2021-23414
Published:
2021-07-28T08:15Z
Last Modified:
2024-11-21T05:51Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
This affects the package video.js before 7.14.3. The src attribute of track tag allows to bypass HTML escaping and execute arbitrary code. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt