Lucene search
GoogleOSV:GHSA-VFVF-MQQ8-RWQCHistoryFeb 18, 2019 - 11:58 p.m.
Sanitization bypass using HTML Entities in marked
2019-02-1823:58:20
Google
osv.dev
8
0.001 Low
EPSS
Percentile
37.5%
Affected versions of marked are susceptible to a cross-site scripting vulnerability in link components when sanitize:true is configured.
Proof of Concept
This flaw exists because link URIs containing HTML entities get processed in an abnormal manner. Any HTML Entities get parsed on a best-effort basis and included in the resulting link, while if that parsing fails that character is omitted.
For example:
A link URI such as
javascript֍ocument;alert(1)
Renders a valid link that when clicked will execute alert(1).
Recommendation
Update to version 0.3.6 or later.
Related
nodejs
nodejs
Sanitization bypass using HTML Entities
2016-04-18 16:26:59
osv
osv
CVE-2016-10531
2018-05-31 20:29:01
prion
prion
Code injection
2018-05-31 20:29:00
Design/Logic Flaw
2018-06-17 20:29:00
cve
cve
CVE-2016-10531
2018-05-31 20:29:01
CVE-2016-1000013
2018-06-17 20:29:00
cvelist
cvelist
CVE-2016-10531
2018-04-26 00:00:00
ubuntucve
ubuntucve
CVE-2016-10531
2018-05-31 00:00:00
nvd
nvd
CVE-2016-10531
2018-05-31 20:29:01
CVE-2016-1000013
2018-06-17 20:29:00
github
github
Sanitization bypass using HTML Entities in marked
2019-02-18 23:58:20
debiancve
debiancve
CVE-2016-10531
2018-05-31 20:29:01
