Lucene search
Veracode Vulnerability DatabaseVERACODE:5414HistoryNov 13, 2017 - 5:25 a.m.
Cross-site Scripting (XSS)
2017-11-1305:25:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.003 Low
EPSS
Percentile
69.8%
Antisamy is vulnerable to cross-site scripting (XSS) attacks. Using HTML5, attackers can inject and execute arbitrary webscript to an application.
| CPE | Name | Operator | Version |
|---|---|---|---|
| owasp antisamy | eq | 1.4 | |
| owasp antisamy | le | 1.5.6 | |
| owasp antisamy | le | 1.4.5 |
References
www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
www.securityfocus.com/bid/105656
github.com/nahsra/antisamy/commit/e76f02a77afb4e43b897f13d17b5bc1260b8afde
github.com/nahsra/antisamy/issues/10
www.oracle.com/security-alerts/cpuapr2020.html
www.oracle.com/security-alerts/cpuApr2021.html
www.oracle.com/security-alerts/cpujan2020.html
www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
Related
cve
cve
CVE-2017-14735
2017-09-25 21:29:01
osv
osv
OWASP AntiSamy Cross-site Scripting vulnerability
2018-10-18 17:22:11
CVE-2017-14735
2017-09-25 21:29:01
cvelist
cvelist
CVE-2017-14735
2017-09-25 21:00:00
debiancve
debiancve
CVE-2017-14735
2017-09-25 21:29:01
symantec
symantec
OWASP AntiSamy CVE-2017-14735 Cross Site Scripting Vulnerability
2017-09-25 00:00:00
nvd
nvd
CVE-2017-14735
2017-09-25 21:29:01
ubuntucve
ubuntucve
CVE-2017-14735
2017-09-25 00:00:00
prion
prion
Cross site scripting
2017-09-25 21:29:00
github
github
OWASP AntiSamy Cross-site Scripting vulnerability
2018-10-18 17:22:11
atlassian
atlassian
Update the bundled version of OWASP AntiSamy to address issues
2019-07-09 02:33:28
Update the bundled version of OWASP AntiSamy to address issues
2019-07-09 02:33:28
Update the bundled version of OWASP AntiSamy to address issues
2019-07-09 02:28:47
nessus
nessus
Oracle Enterprise Manager Cloud Control (Jul 2021 CPU)
2021-07-21 00:00:00
Oracle Application Testing Suite Multiple Vulnerabilities (Jan 2020 CPU)
2020-01-27 00:00:00
Oracle E-Business Suite Multiple Vulnerabilities (April 2021 CPU)
2021-04-23 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2019
2019-01-15 00:00:00
Oracle Critical Patch Update Advisory - July 2019
2019-07-16 00:00:00
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00