PT-2023-19087 · Sanitize +3 · Sanitize +3
Name of the Vulnerable Software and Affected Versions: Sanitize versions 5.0.0 through 6.0.1 Description: Sanitize is an allowlist-based HTML and CSS sanitizer. When configured with a custom allowlist that allows noscript elements, attackers can include arbitrary HTML, resulting in cross-site...