[MEDIUM] Harvest Chosen vulnerable to Cross-site Scripting

PKSA-t4kr-zdy1-4mxt CVE-2018-25050 GHSA-x5q4-m45m-fm94

Affected package: harvesthq/chosen

Affected version: <1.8.7

Reported by:
GitHub