Lucene search
GoogleOSV:CVE-2019-10010HistoryMar 24, 2019 - 6:29 p.m.
CVE-2019-10010
2019-03-2418:29:00
Google
osv.dev
1
Cross-site scripting (XSS) vulnerability in the PHP League CommonMark library before 0.18.3 allows remote attackers to insert unsafe links into HTML by using double-encoded HTML entities that are not properly escaped during rendering, a different vulnerability than CVE-2018-20583.
Related
nvd
nvd
CVE-2019-10010
2019-03-24 18:29:00
CVE-2018-20583
2018-12-30 05:29:00
cvelist
cvelist
CVE-2019-10010
2019-03-24 17:58:54
CVE-2018-20583
2022-10-03 16:22:05
cve
cve
CVE-2019-10010
2019-03-24 18:29:00
CVE-2018-20583
2022-10-03 16:22:05
prion
prion
Cross site scripting
2019-03-24 18:29:00
Cross site scripting
2018-12-30 05:29:00
github
github
PHP League CommonMark vulnerable to Cross-Site Scripting (XSS)
2022-05-14 01:40:50
Moderate severity vulnerability that affects league/commonmark
2019-09-17 22:47:47
osv
osv
PHP League CommonMark vulnerable to Cross-Site Scripting (XSS)
2022-05-14 01:40:50
Moderate severity vulnerability that affects league/commonmark
2019-09-17 22:47:47
CVE-2018-20583
2018-12-30 05:29:00
friendsofphp
friendsofphp
XSS vulnerability with unsafe link protocols
2018-12-29 20:39:28
XSS vulnerability with double-encoded entities
2019-03-21 22:52:50
veracode
veracode
Cross-Site Scripting (XSS)
2019-03-25 05:30:24