Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package insane, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2020-26303 — CVSS 7.5 (high): insane is a whitelist-oriented HTML sanitizer. Versions 2.6.2 and prior contain one or more regular expressions that are vulnerable to…