PostHog-js is a library to interface with the PostHog analytics tool. Versions prior to 1.57.2 have the potential for cross-site scripting. Problem has been patched in 1.57.2. Users are advised to upgrade. Users unable to upgrade should ensure that their Content Security Policy is in place.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| posthog-js(npm) | 0 | 1.57.2 | N/A |
CVSS Metrics
