Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-X95H-979X-CF3J
HistoryOct 19, 2021 - 8:15 p.m.

Policies not properly enforced in bluemonday

2021-10-1920:15:30
Google
osv.dev
10

0.003 Low

EPSS

Percentile

71.7%

JSON

The bluemonday sanitizer before 1.0.16 for Go, and before 0.0.8 for Python (in pybluemonday), does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.

Related

ubuntucve 1
veracode 1
cve 1
nvd 1
debiancve 1
osv 3
cvelist 1
github 1
prion 1
ubuntucve
ubuntucve
CVE-2021-42576
2021-10-18 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2021-10-19 04:35:53
cve
cve
CVE-2021-42576
2021-10-18 15:15:07
nvd
nvd
CVE-2021-42576
2021-10-18 15:15:07
debiancve
debiancve
CVE-2021-42576
2021-10-18 15:15:07
osv
osv
CVE-2021-42576
2021-10-18 15:15:07
PYSEC-2021-849
2021-10-18 15:15:00
Cross-site scripting via leaked style elements in github.com/microcosm-cc/bluemonday
2022-08-15 18:02:24
cvelist
cvelist
CVE-2021-42576
2021-10-18 14:36:43
github
github
Policies not properly enforced in bluemonday
2021-10-19 20:15:30
prion
prion
Design/Logic Flaw
2021-10-18 15:15:00

0.003 Low

EPSS

Percentile

71.7%

JSON
Related for OSV:GHSA-X95H-979X-CF3J
ubuntucve1veracode1cve1nvd1debiancve1osv3cvelist1github1prion1