Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-16016

Опубликовано: 04 июн. 2018
Источник: debian

Описание

Sanitize-html is a library for scrubbing html input of malicious values. Versions 1.11.1 and below are vulnerable to cross site scripting (XSS) in certain scenarios: If allowed at least one nonTextTags, the result is a potential XSS vulnerability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
node-sanitize-htmlnot-affectedpackage

Связанные уязвимости

nvd логотип

CVE-2017-16016

CVSS3: 6.1
nvd
больше 7 лет назад

Sanitize-html is a library for scrubbing html input of malicious values. Versions 1.11.1 and below are vulnerable to cross site scripting (XSS) in certain scenarios: If allowed at least one nonTextTags, the result is a potential XSS vulnerability.

github логотип

GHSA-xc6g-ggrc-qq4r

github
около 7 лет назад

Cross-Site Scripting in sanitize-html