6 matches found
CVE-2019-16728
creationtimestamp| type| source ---|---|--- 2026-07-07 14:02:53+00:00| seen| https://gist.github.com/UltraRamy/b344c7471b63468d9b5bc7bd3f33c59c...
CVE-2019-16728
DOMPurify before 2.0.1 allows XSS because of innerHTML mutation XSS mXSS for an SVG element or a MATH element, as demonstrated by Chrome and Safari...
[SECURITY] [DLA 2419-1] dompurify.js security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2419-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz October 29, 2020 https://wiki.debian.org/LTS -...
@5lions/library-registry-admin (=0.0.0), @adobe/helix-cli (>=3.0.0 <=5.2.0) +358 more potentially affected by CVE-2019-16728 via dompurify (>=0.6.6 <=2.0.2)
dompurify NPM version =0.6.6, =3.0.0, =2.2.0, =1.0.1, =0.6.0, =0.1.0, =0.7.3-dev, =0.7.3-dev, =0.7.3-dev, =0.7.3-dev, =0.7.3-dev, =0.15.0, =0.7.3-dev, =0.7.3-dev, =0.7.8 - @atom-ide-community/nuclide-watchman-helpers =0.7.3-dev and more Source cves: CVE-2019-16728 Source advisory:...
Exploit for Path Traversal in Nazgul Nostromo_Nhttpd
CVE-2019-16728-PoC CVE-201...
CVE-2019-16728
Summary: CVE-2019-16728 affects DOMPurify prior to 2.0.1, enabling cross-site scripting via innerHTML mutation XSS (mXSS) in SVG or MATH elements, demonstrated in Chrome and Safari. Affected component: DOMPurify (HTML, MathML, SVG sanitization code). Root cause: improper handling of innerHTML mut...