6 matches found
Mistune '_keyify' function cross-site scripting vulnerability
Mistune is a Python based parser with renderer functionality. A cross-site scripting vulnerability exists in the 'keyify' function of the mistune.py file in versions of Mistune prior to 0.8.1. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...
CVE-2017-16876
Cross-site scripting XSS vulnerability in the keyify function in mistune.py in Mistune before 0.8.1 allows remote attackers to inject arbitrary web script or HTML by leveraging failure to escape the "key" argument...
DEBIAN-CVE-2017-16876
Cross-site scripting XSS vulnerability in the keyify function in mistune.py in Mistune before 0.8.1 allows remote attackers to inject arbitrary web script or HTML by leveraging failure to escape the "key" argument...
PYSEC-2017-18
Cross-site scripting XSS vulnerability in the keyify function in mistune.py in Mistune before 0.8.1 allows remote attackers to inject arbitrary web script or HTML by leveraging failure to escape the "key" argument...
UBUNTU-CVE-2017-16876
Cross-site scripting XSS vulnerability in the keyify function in mistune.py in Mistune before 0.8.1 allows remote attackers to inject arbitrary web script or HTML by leveraging failure to escape the "key" argument...
CVE-2017-16876
Cross-site scripting XSS vulnerability in the keyify function in mistune.py in Mistune before 0.8.1 allows remote attackers to inject arbitrary web script or HTML by leveraging failure to escape the "key" argument...