Lucene search
Veracode Vulnerability DatabaseVERACODE:6001HistoryMar 20, 2018 - 6:00 a.m.
Cross-site Scripting (XSS)
2018-03-2006:00:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.001 Low
EPSS
Percentile
50.1%
sanitize is vulnerable to cross-site scripting (XSS) attacks. The vulnerability can occur under specific conditions when using libxml2 >= 2.9.2. The vulnerability exists as an output is improperly sanitized, allowing non-whitelisted attributes to be formed through a given HTML fragment when parsed by libxml2.
| CPE | Name | Operator | Version |
|---|---|---|---|
| sanitize | le | 1.3.0.dev.20101210 | |
| sanitize | le | 4.6.2 |
Related
openvas
openvas
Debian: Security Advisory (DSA-4358-1)
2018-12-26 00:00:00
cvelist
cvelist
CVE-2018-3740
2018-03-30 19:00:00
prion
prion
Hardcoded credentials
2018-03-30 19:29:00
osv
osv
ruby-sanitize - security update
2018-12-27 00:00:00
CVE-2018-3740
2018-03-30 19:29:00
Sanitize vulnerable to Improper Input Validation and Cross-site Scripting
2018-03-21 11:56:32
nessus
nessus
Debian DSA-4358-1 : ruby-sanitize - security update
2018-12-28 00:00:00
debian
debian
[SECURITY] [DSA 4358-1] ruby-sanitize security update
2018-12-27 12:31:26
[SECURITY] [DSA 4358-1] ruby-sanitize security update
2018-12-27 12:31:26
cve
cve
CVE-2018-3740
2018-03-30 19:29:00
ubuntucve
ubuntucve
CVE-2018-3740
2018-03-30 00:00:00
debiancve
debiancve
CVE-2018-3740
2018-03-30 19:29:00
nvd
nvd
CVE-2018-3740
2018-03-30 19:29:00
github
github
Sanitize vulnerable to Improper Input Validation and Cross-site Scripting
2018-03-21 11:56:32
freebsd
freebsd
Sanitize -- XSS vulnerability
2018-03-19 00:00:00
Gitlab -- multiple vulnerabilities
2018-06-25 00:00:00
archlinux
archlinux
[ASA-201807-1] gitlab: multiple issues
2018-07-04 00:00:00
rubygems
rubygems
Revert libxml2 behavior in Nokogiri gem that could cause XSS
2018-03-28 21:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1966
2021-07-02 18:06:34