2 matches found
CVE-2026-41239 vulnerabilities
Vulnerabilities for packages: opensearch-dashboards, langfuse-fips, wazuh-dashboard-fips, wazuh-dashboard, opensearch-dashboards-fips, nextcloud-server...
UBUNTU-CVE-2026-41239
DOMPurify is a DOM-only cross-site scripting sanitizer for HTML, MathML, and SVG. Starting in version 1.0.10 and prior to version 3.4.0, SAFEFORTEMPLATES strips ... expressions from untrusted HTML. This works in string mode but not with RETURNDOM or RETURNDOMFRAGMENT, allowing XSS via...