stored xss due to unsantized anchor url in GitHub repository alvarotrigo/fullpage.js before 4.0.4. stored xss .
fullpage project fullpage