tableexport.jquery.plugin is vulnerable to cross-site scripting. The vulnerability exists in the parseString
function in tableExport.js
due to a lack of sanitization in the url generation which allows a malicious attacker to steal sensitive information.
github.com/advisories/GHSA-j636-crp3-m584
github.com/hhurz/tableexport.jquery.plugin/commit/dcbaee23cf98328397a153e71556f75202988ec9
github.com/hhurz/tableExport.jquery.plugin/commit/de1c24fe9cbb97d28bacab29b2fc24c78defeb0e
huntr.dev/bounties/49a14371-6058-47dd-9801-ec38a7459fc5
huntr.dev/bounties/49a14371-6058-47dd-9801-ec38a7459fc5/