Name of the Vulnerable Software and Affected Versions harp versions all

Description The issue concerns a Cross-Site Scripting vulnerability due to the misconfiguration of the rendering engine in harp, which fails to sanitize HTML output. This allows attackers to run arbitrary JavaScript when processing malicious files.

Recommendations For harp version all, consider using an alternative module until a fix is made available.