Layui · Layui · CVE-2023-50550
**Name of the Vulnerable Software and Affected Versions**
layui versions up to v2.74
**Description**
The issue is a cross-site scripting (XSS) vulnerability. It occurs via the `data-content` parameter.
**Recommendations**
For versions up to v2.74, as a temporary workaround, consider restricting the use of the `data-content` parameter until a patch is available.