CVE-2019-11003 (materialize)

In Materialize through 1.0.0, XSS is possible via the Autocomplete feature.
Source: NIST
CVE-2019-11003 (materialize)