CVE-2024-26465

A DOM based cross-site scripting (XSS) vulnerability in the component /beep/Beep.Instrument.js of stewdio beep.js before commit ef22ad7 allows attackers to execute arbitrary Javascript via sending a crafted URL. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt