Find real vulnerabilities before they ship
Vulnerability Database › npm › CVE-2019-20174
Auth0 Lock before 11.21.0 allows XSS when additionalSignUpFields is used with an untrusted placeholder.
Base Score