Lucene search
K

6 matches found

UbuntuCve
UbuntuCve
added 2018/03/07 11:29 p.m.24 views

CVE-2018-7753

An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values weren't properly sanitized if the values contained character entities. Using character entities, it was possible to construct a URI value with a scheme that was not allowed that would slide through unsanitized...

9.8CVSS7.2AI score0.02229EPSS
Exploits0References6
NVD
NVD
added 2018/03/07 11:29 p.m.17 views

CVE-2018-7753

An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values weren't properly sanitized if the values contained character entities. Using character entities, it was possible to construct a URI value with a scheme that was not allowed that would slide through unsanitized...

9.8CVSS9.3AI score0.02229EPSS
Exploits0References3
Prion
Prion
added 2018/03/07 11:29 p.m.16 views

Design/Logic Flaw

An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values weren't properly sanitized if the values contained character entities. Using character entities, it was possible to construct a URI value with a scheme that was not allowed that would slide through unsanitized...

7.5CVSS9.2AI score0.02229EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2018/03/07 11:29 p.m.21 views

CVE-2018-7753

An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values weren't properly sanitized if the values contained character entities. Using character entities, it was possible to construct a URI value with a scheme that was not allowed that would slide through unsanitized...

9.8CVSS7AI score
Exploits0References3
Debian CVE
Debian CVE
added 2018/03/07 11:0 p.m.19 views

CVE-2018-7753

An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values weren't properly sanitized if the values contained character entities. Using character entities, it was possible to construct a URI value with a scheme that was not allowed that would slide through unsanitized...

9.8CVSS9.3AI score0.02229EPSS
Exploits0
Cvelist
Cvelist
added 2018/03/07 11:0 p.m.31 views

CVE-2018-7753

An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values weren't properly sanitized if the values contained character entities. Using character entities, it was possible to construct a URI value with a scheme that was not allowed that would slide through unsanitized...

9.3AI score0.02229EPSS
Exploits0References3
Rows per page
Query Builder