Antisamy is vulnerable to cross-site scripting (XSS) attacks. Using HTML5, attackers can inject and execute arbitrary webscript to an application.
CPE | Name | Operator | Version |
---|---|---|---|
owasp antisamy | eq | 1.4 | |
owasp antisamy | le | 1.5.6 | |
owasp antisamy | le | 1.4.5 |
www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
www.securityfocus.com/bid/105656
github.com/nahsra/antisamy/commit/e76f02a77afb4e43b897f13d17b5bc1260b8afde
github.com/nahsra/antisamy/issues/10
www.oracle.com/security-alerts/cpuapr2020.html
www.oracle.com/security-alerts/cpuApr2021.html
www.oracle.com/security-alerts/cpujan2020.html
www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html