npm
@haxtheweb/iframe-loader
1 known vulnerability · 0 critical · 0 high
GHSA-jh3h-rpxg-fr36
Stored XSS via <iframe> in HAX CMS allows access to sensitive client-side data and account takeover
Published May 19, 2026
Check your entire dependency tree at onceRun dependency scan →