RSS   Vulnerabilities for 'Sanitize-html'   RSS

2018-06-04
 
CVE-2017-16017

CWE-79
 

 
sanitize-html is a library for scrubbing html input for malicious values Versions 1.2.2 and below have a cross site scripting vulnerability.

 
 
CVE-2017-16016

CWE-79
 

 
Sanitize-html is a library for scrubbing html input of malicious values. Versions 1.11.1 and below are vulnerable to cross site scripting (XSS) in certain scenarios: If allowed at least one nonTextTags, the result is a potential XSS vulnerability.

 


Copyright 2024, cxsecurity.com

 

Back to Top