Lucene search
Veracode Vulnerability DatabaseVERACODE:36184HistoryJun 28, 2022 - 9:48 a.m.
Denial Of Service (DoS)
2022-06-2809:48:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
lettersanitizer
vulnerability
sanitizehtml
dos
css at-rules
attacker
crash
system
EPSS
0.001
Percentile
46.6%
lettersanitizer is vulnerable to denial of service. The vulnerability exists in the sanitizeHtml function in index.js as it does not properly handle css at-rules, allowing an attacker to crash the system via a malicious request.
Related
prion
prion
Denial of service
2022-06-27 23:15:00
github
github
Improper handling of CSS at-rules in lettersanitizer
2022-06-23 17:48:19
cnvd
cnvd
lettersanitizer denial of service vulnerability
2022-06-30 00:00:00
osv
osv
CVE-2022-31103
2022-06-27 23:15:08
Improper handling of CSS at-rules in lettersanitizer
2022-06-23 17:48:19
cvelist
cvelist
CVE-2022-31103 Improper handling of CSS at-rules in lettersanitizer
2022-06-27 22:20:16
cve
cve
CVE-2022-31103
2022-06-27 23:15:08
nvd
nvd
CVE-2022-31103
2022-06-27 23:15:08