Количество 4
Количество 4
CVE-2021-29272
bluemonday before 1.0.5 allows XSS because certain Go lowercasing converts an uppercase Cyrillic character, defeating a protection mechanism against the "script" string.
CVE-2021-29272
bluemonday before 1.0.5 allows XSS because certain Go lowercasing converts an uppercase Cyrillic character, defeating a protection mechanism against the "script" string.
CVE-2021-29272
bluemonday before 1.0.5 allows XSS because certain Go lowercasing converts an uppercase Cyrillic character, defeating a protection mechanism against the "script" string.
GHSA-3x58-xr87-2fcj
Cross-site scripting in bluemonday
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-29272 bluemonday before 1.0.5 allows XSS because certain Go lowercasing converts an uppercase Cyrillic character, defeating a protection mechanism against the "script" string. | CVSS3: 6.1 | 0% Низкий | почти 5 лет назад |
 | CVE-2021-29272 bluemonday before 1.0.5 allows XSS because certain Go lowercasing converts an uppercase Cyrillic character, defeating a protection mechanism against the "script" string. | CVSS3: 5.9 | 0% Низкий | почти 5 лет назад |
 | CVE-2021-29272 bluemonday before 1.0.5 allows XSS because certain Go lowercasing converts an uppercase Cyrillic character, defeating a protection mechanism against the "script" string. | CVSS3: 6.1 | 0% Низкий | почти 5 лет назад |
| GHSA-3x58-xr87-2fcj Cross-site scripting in bluemonday | CVSS3: 6.1 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу