Количество 2
Количество 2
CVE-2024-23341
TuiTse-TsuSin is a package for organizing the comparative corpus of Taiwanese Chinese characters and Roman characters, and extracting sentences of the Taiwanese Chinese characters and the Roman characters. Prior to version 1.3.2, when using `tuitse_html` without quoting the input, there is a html injection vulnerability. Version 1.3.2 contains a patch for the issue. As a workaround, sanitize Taigi input with HTML quotation.
GHSA-m4m5-j36m-8x72
html injection vulnerability in the `tuitse_html` function.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-23341 TuiTse-TsuSin is a package for organizing the comparative corpus of Taiwanese Chinese characters and Roman characters, and extracting sentences of the Taiwanese Chinese characters and the Roman characters. Prior to version 1.3.2, when using `tuitse_html` without quoting the input, there is a html injection vulnerability. Version 1.3.2 contains a patch for the issue. As a workaround, sanitize Taigi input with HTML quotation. | CVSS3: 6.1 | 0% Низкий | около 2 лет назад |
| GHSA-m4m5-j36m-8x72 html injection vulnerability in the `tuitse_html` function. | CVSS3: 6.1 | 0% Низкий | около 2 лет назад |
Уязвимостей на страницу