OWASP AntiSamy is vulnerable to cross-site scripting (XSS) attacks. A malicious user can pass a string to the application through a tag that supports style with active content to execute arbitrary code.
CPE | Name | Operator | Version |
---|---|---|---|
owasp antisamy | le | 1.5.3 |