CVE-2023-3481

Name of the Vulnerable Software and Affected Versions Critters versions 0.0.17 through 0.0.19

Description The issue arises when parsing HTML, leading to a potential cross-site scripting (XSS) bug. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For Critters versions 0.0.17 through 0.0.19, upgrade to version 0.0.20 of the extension. As a temporary workaround, consider restricting the parsing of HTML to minimize the risk of exploitation until a patch is available.