Lucene search
GoogleOSV:CVE-2021-32796HistoryJul 27, 2021 - 10:15 p.m.
CVE-2021-32796
2021-07-2722:15:07
Google
osv.dev
3
xmldom is an open source pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. xmldom versions 0.6.0 and older do not correctly escape special characters when serializing elements removed from their ancestor. This may lead to unexpected syntactic changes during XML processing in some downstream applications. This issue has been resolved in version 0.7.0. As a workaround downstream applications can validate the input and reject the maliciously crafted documents.
Related
redhatcve
redhatcve
CVE-2021-32796
2021-07-29 14:25:41
veracode
veracode
XML Injection
2021-07-29 03:04:59
cvelist
cvelist
CVE-2021-32796 Misinterpretation of malicious XML input in xmldom
2021-07-27 21:45:13
prion
prion
Input validation
2021-07-27 22:15:00
debiancve
debiancve
CVE-2021-32796
2021-07-27 22:15:07
nvd
nvd
CVE-2021-32796
2021-07-27 22:15:07
github
github
Misinterpretation of malicious XML input
2021-08-03 16:57:05
cve
cve
CVE-2021-32796
2021-07-27 22:15:07
ubuntucve
ubuntucve
CVE-2021-32796
2021-07-27 00:00:00
osv
osv
Misinterpretation of malicious XML input
2021-08-03 16:57:05
nodejs
nodejs
Misinterpretation of malicious XML input
2021-08-03 16:57:27
