CVE-2021-32858

esdoc-publish-html-plugin is a plugin for the document maintenance software ESDoc. TheHTML sanitizer in esdoc-publish-html-plugin 1.1.2 and prior can be bypassed which may lead to cross-site scripting XSS issues. There are no known patches for this issue...

Cross-site Scripting (XSS)

esdoc-publish-html-plugin is vulnerable to Cross-site Scripting XSS. The vulnerability exists because the markdown function in util.js does not properly remove HTML comments, allowing an attacker to inject and execute malicious HTML content such as through the tag parameter...

CVE-2021-32858

esdoc-publish-html-plugin is a plugin for the document maintenance software ESDoc. TheHTML sanitizer in esdoc-publish-html-plugin 1.1.2 and prior can be bypassed which may lead to cross-site scripting XSS issues. There are no known patches for this issue...

CVE-2021-32858

esdoc-publish-html-plugin is a plugin for the document maintenance software ESDoc. TheHTML sanitizer in esdoc-publish-html-plugin 1.1.2 and prior can be bypassed which may lead to cross-site scripting XSS issues. There are no known patches for this issue...

Cross site scripting

esdoc-publish-html-plugin is a plugin for the document maintenance software ESDoc. TheHTML sanitizer in esdoc-publish-html-plugin 1.1.2 and prior can be bypassed which may lead to cross-site scripting XSS issues. There are no known patches for this issue...

ESDoc Plugins esdoc-publish-html-plugin 跨站脚本漏洞

ESDoc Plugins is ESDoc open source an official plugin for ESDoc . ESDoc Plugins esdoc-publish-html-plugin 1.1.2 and earlier versions have a security vulnerability , the vulnerability stems from the vulnerability to cross-site scripting XSS attacks...

CVE-2021-32858

CVE-2021-32858 affects esdoc-publish-html-plugin (ESDoc ecosystem). The HTML sanitizer in versions 1.1.2 and earlier can be bypassed, potentially enabling cross-site scripting (XSS). There are no known patches reported. This is the primary technical detail across connected sources; no exploit det...

CVE-2021-32858 esdoc-publish-html-plugin vulnerable to Cross-site Scripting

esdoc-publish-html-plugin is a plugin for the document maintenance software ESDoc. TheHTML sanitizer in esdoc-publish-html-plugin 1.1.2 and prior can be bypassed which may lead to cross-site scripting XSS issues. There are no known patches for this issue...

PT-2023-12190 · Unknown · Esdoc-Publish-Html-Plugin

Name of the Vulnerable Software and Affected Versions: esdoc-publish-html-plugin versions 1.1.2 and prior Description: The HTML sanitizer in esdoc-publish-html-plugin can be bypassed, potentially leading to cross-site scripting XSS issues. There are no known patches for this issue. Recommendation...