Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:43 a.m.11 views

CVE-2023-43643

AntiSamy is a library for performing fast, configurable cleansing of HTML coming from untrusted sources. Prior to version 1.7.4, there is a potential for a mutation XSS mXSS vulnerability in AntiSamy caused by flawed parsing of the HTML being sanitized. To be subject to this vulnerability the...

6.1CVSS5.8AI score0.00473EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/13 9:45 p.m.184 views

Security Bulletin: There is a vulnerability in AntiSamy used by IBM Maximo Asset Management (CVE-2023-43643)

Summary There is a vulnerability in AntiSamy used by IBM Maximo Asset Management . Vulnerability Details CVEID:CVE-2023-43643 DESCRIPTION: AntiSamy is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using...

6.1CVSS6.4AI score0.00473EPSS
Exploits1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/09 1:31 p.m.14 views

CVE-2023-43643 mXSS in AntiSamy

AntiSamy is a library for performing fast, configurable cleansing of HTML coming from untrusted sources. Prior to version 1.7.4, there is a potential for a mutation XSS mXSS vulnerability in AntiSamy caused by flawed parsing of the HTML being sanitized. To be subject to this vulnerability the...

6.1CVSS5.8AI score0.00473EPSS
Exploits1References2
OSV
OSV
added 2023/10/09 1:31 p.m.22 views

CVE-2023-43643 mXSS in AntiSamy

AntiSamy is a library for performing fast, configurable cleansing of HTML coming from untrusted sources. Prior to version 1.7.4, there is a potential for a mutation XSS mXSS vulnerability in AntiSamy caused by flawed parsing of the HTML being sanitized. To be subject to this vulnerability the...

6.1CVSS6.2AI score0.00473EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2023/10/09 12:42 a.m.10 views

cn.acooly:acooly-auth-wechat-authenticator (=5.2.1), cn.herodotus.engine:access-core (>=2.7.2.3 <=3.1.4.2) +817 more potentially affected by CVE-2023-43643 via org.owasp.antisamy:antisamy (>=1.4.3 <=1.7.3)

org.owasp.antisamy:antisamy MAVEN version =1.4.3, =2.7.2.3, =2.7.2.3, =2.7.2.3, =2.7.2.3, =2.7.2.3, =2.7.2.3, =2.7.0.0, =2.7.0.Beta1, =2.7.0.0, =2.7.0.Beta1, =2.7.0.0, =2.7.0.0, =2.7.0.0, =2.7.0.10, =3.1.4.2 and more Source cves: CVE-2023-43643 Source advisory: OSV:GHSA-PCF2-GH6G-H5R2...

6.1CVSS6.8AI score0.00473EPSS
Exploits1
Rows per page
Query Builder