Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package buttle, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVE-2019-5422 — CVSS 6.1 (medium): XSS in buttle npm package version 0.2.0 causes execution of attacker-provided code in the victim's browser when an attacker creates an…