CVE-2019-11004 (materialize)

In Materialize through 1.0.0, XSS is possible via the Toast feature.
Source: NIST
CVE-2019-11004 (materialize)