CVE-2017-1000006by Jeremyin Security Bulletinson Posted on July 17, 2017 Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an XSS issue.