Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:28991
HistoryJan 14, 2021 - 6:04 a.m.

Arbitrary Code Injection

2021-01-1406:04:54
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
code injection
json-sanitizer
html injection
xml injection
security vulnerability

EPSS

0.002

Percentile

64.7%

JSON

json-sanitizer is vulnerable to arbtirary code injection. An attacker could potentially inject arbitrary HTML and XML into embedding documents as closing SCRIPT tags and CDATA section delimiters may be emitted for certain input.

Related

cve 1
osv 2
prion 1
cvelist 1
github 1
nvd 1
cve
cve
CVE-2021-23899
2021-01-13 16:15:14
osv
osv
Arbitrary code injection in json-sanitizer
2021-06-16 17:34:18
CVE-2021-23899
2021-01-13 16:15:14
prion
prion
Design/Logic Flaw
2021-01-13 16:15:00
cvelist
cvelist
CVE-2021-23899
2021-01-13 15:49:56
github
github
Arbitrary code injection in json-sanitizer
2021-06-16 17:34:18
nvd
nvd
CVE-2021-23899
2021-01-13 16:15:14

EPSS

0.002

Percentile

64.7%

JSON
Related for VERACODE:28991
cve1osv2prion1cvelist1github1nvd1