Lucene search
K

GHSA-MM8J-9X84-M9CV Arbitrary code injection in json-sanitizer

šŸ—“ļøĀ 16 Jun 2021Ā 17:34:18Reported byĀ GoogleTypeĀ 
osv
Ā osv
šŸ”—Ā osv.devšŸ‘Ā 1Ā Views

OWASP json-sanitizer before 1.2.2 may emit closing script tags and character data sections, allowing arbitrary HTML or XML in embedding documents.

Related
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2021-23899
13 Jan 202119:25
–circl
CNNVD
Owasp Json-sanitizer Code Issue Vulnerability
13 Jan 202100:00
–cnnvd
CVE
CVE-2021-23899
13 Jan 202115:49
–cve
Cvelist
CVE-2021-23899
13 Jan 202115:49
–cvelist
EUVD
EUVD-2021-1360
7 Oct 202500:30
–euvd
Github Security Blog
Arbitrary code injection in json-sanitizer
16 Jun 202117:34
–github
NVD
CVE-2021-23899
13 Jan 202116:15
–nvd
Prion
Design/Logic Flaw
13 Jan 202116:15
–prion
RedhatCVE
CVE-2021-23899
22 May 202519:19
–redhatcve
Veracode
Arbitrary Code Injection
14 Jan 202106:04
–veracode
Rows per page

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation