A vulnerability, which was classified as problematic, has been found in xuliangzhan vxe-table up to 3.7.9. This issue affects the function export of the file packages/textarea/src/textarea.js of the component vxe-textarea. The manipulation of the argument inputValue leads to cross site scripting.

The identification of this vulnerability is CVE-2023-1001. The attack may be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.