LOW
GHSA-hwmc-r6mf-jh83
Schema.org has cross-site scripting (XSS) via script break-out in toScript() output
상세
Schema.org has a cross-site scripting (XSS) vulnerability via script break-out in toScript() output.
이 버전이 영향받나요?
사용 중인 패키지 버전을 입력하면 즉시 평가합니다.
영향 패키지
Packagist / spatie/schema-org
최초 영향 버전:
3.23.1 수정 버전: 3.23.2 수정
composer require spatie/schema-org:^3.23.2 Packagist / spatie/schema-org
최초 영향 버전:
4.0.0 수정 버전: 4.0.2 수정
composer require spatie/schema-org:^4.0.2 참고
- https://github.com/spatie/schema-org/pull/242 [WEB]
- https://github.com/spatie/schema-org/commit/be389b4759214c11cc1364a16e34a929c5af5a88 [WEB]
- https://github.com/FriendsOfPHP/security-advisories/blob/master/spatie/schema-org/2026-04-20.yaml [WEB]
- https://github.com/spatie/schema-org [PACKAGE]
- https://github.com/spatie/schema-org/releases/tag/4.0.2 [WEB]