Lucene search
GoogleOSV:GHSA-HPV5-V8G5-C864HistoryMay 17, 2022 - 12:26 a.m.
Cross-site Scripting in Mistune
2022-05-1700:26:00
Google
osv.dev
10
mistune
cross-site scripting
unexpected newline
crafted email address
escape function
autolink function
software
EPSS
0.001
Percentile
38.0%
mistune.py in Mistune 0.7.4 allows XSS via an unexpected newline (such as in java\nscript:) or a crafted email address, related to the escape and autolink functions.
References
Related
veracode
veracode
Cross-site Scripting (XSS)
2017-10-19 22:13:06
osv
osv
CVE-2017-15612
2017-10-19 08:29:00
PYSEC-2017-80
2017-10-19 08:29:00
python310-mistune-3.0.2-2.5 on GA media
2024-07-12 00:00:00
ubuntucve
ubuntucve
CVE-2017-15612
2017-10-19 00:00:00
redhatcve
redhatcve
CVE-2017-15612
2022-05-20 23:09:56
prion
prion
Design/Logic Flaw
2017-10-19 08:29:00
cve
cve
CVE-2017-15612
2017-10-19 08:29:00
cvelist
cvelist
CVE-2017-15612
2017-10-19 08:00:00
debiancve
debiancve
CVE-2017-15612
2017-10-19 08:29:00
github
github
Cross-site Scripting in Mistune
2022-05-17 00:26:00
nvd
nvd
CVE-2017-15612
2017-10-19 08:29:00
openvas
openvas
Fedora Update for python-mistune FEDORA-2017-7b4149911a
2017-12-29 00:00:00
Fedora Update for python-mistune FEDORA-2017-2eefd424bd
2017-12-30 00:00:00
Mageia: Security Advisory (MGASA-2018-0066)
2022-01-28 00:00:00
mageia
mageia
Updated python-mistune packages fix security vulnerabilities
2018-01-07 19:06:39
fedora
fedora
[SECURITY] Fedora 26 Update: python-mistune-0.8.3-1.fc26
2017-12-27 20:52:21
[SECURITY] Fedora 27 Update: python-mistune-0.8.3-1.fc27
2017-12-29 18:45:31
nessus
nessus
Fedora 26 : python-mistune (2017-7b4149911a)
2017-12-28 00:00:00
Fedora 27 : python-mistune (2017-2eefd424bd)
2018-01-15 00:00:00
openSUSE Security Update : python-mistune (openSUSE-2018-148)
2018-02-09 00:00:00