CVE-2017-15612

2017-10-19T08:29:00
ID CVE-2017-15612
Type cve
Reporter cve@mitre.org
Modified 2017-11-07T20:34:00

Description

mistune.py in Mistune 0.7.4 allows XSS via an unexpected newline (such as in java\nscript:) or a crafted email address, related to the escape and autolink functions.