Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:28001
HistoryNov 30, 2020 - 2:54 a.m.

Cross-site Scripting (XSS)

2020-11-3002:54:37
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
lxml
vulnerability
cross-site scripting

EPSS

0.004

Percentile

73.0%

lxml is vulnerable to cross-site scripting (XSS). The vulnerability exists due to an improper sanitization in the parser, allowing an attacker to inject and execute malicious script through `` and `