Critters · Critters · CVE-2023-3481
**Name of the Vulnerable Software and Affected Versions**
Critters versions 0.0.17 through 0.0.19
**Description**
The issue arises when parsing HTML, leading to a potential cross-site scripting (XSS) bug. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.
**Recommendations**
For Critters versions 0.0.17 through 0.0.19, upgrade to version 0.0.20 of the extension.
As a temporary workaround, consider restricting the parsing of HTML to minimize the risk of exploitation until a patch is available.