OWASP json-sanitizer up to 1.2.1 Script Tag cross site scripting

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as problematic, has been found in OWASP json-sanitizer up to 1.2.1. This issue affects an unknown code of the component Script Tag Handler. Upgrading to version 1.2.2 eliminates this vulnerability. The upgrade is hosted for download at github.com. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1082680901/14/2021VulD...price_0day$0-$5ksee documentation01/14/2021accepted90
1082680801/14/2021VulD...cvss3_meta_tempscore3.5see documentation01/14/2021accepted90
1082680701/14/2021VulD...cvss3_meta_basescore3.5see documentation01/14/2021accepted90
1082680601/14/2021VulD...cvss3_vuldb_tempscore3.501/14/2021accepted90
1082680501/14/2021VulD...cvss3_vuldb_basescore3.501/14/2021accepted90
1082680401/14/2021VulD...cvss2_vuldb_tempscore4.001/14/2021accepted90
1082680301/14/2021VulD...cvss2_vuldb_basescore4.001/14/2021accepted90
1082680201/14/2021VulD...cvss3_vuldb_eXderived from historical data01/14/2021accepted80
1082680101/14/2021VulD...cvss3_vuldb_sUderived from historical data01/14/2021accepted80
1082680001/14/2021VulD...cvss3_vuldb_prLderived from historical data01/14/2021accepted80
1082679901/14/2021VulD...cvss2_vuldb_eNDderived from historical data01/14/2021accepted80
1082679801/14/2021VulD...cvss2_vuldb_auSderived from historical data01/14/2021accepted80
1082679701/14/2021VulD...cvss2_vuldb_rlOFderived from vuldb v3 vector01/14/2021accepted80
1082679601/14/2021VulD...cvss2_vuldb_rcCderived from vuldb v3 vector01/14/2021accepted80
1082679501/14/2021VulD...cvss2_vuldb_aiNderived from vuldb v3 vector01/14/2021accepted80
1082679401/14/2021VulD...cvss2_vuldb_iiPderived from vuldb v3 vector01/14/2021accepted80
1082679301/14/2021VulD...cvss2_vuldb_ciNderived from vuldb v3 vector01/14/2021accepted80
1082679201/14/2021VulD...cvss2_vuldb_acLderived from vuldb v3 vector01/14/2021accepted80
1082679101/14/2021VulD...cvss2_vuldb_avNderived from vuldb v3 vector01/14/2021accepted80
1082679001/14/2021VulD...date1610578800 (01/14/2021)01/14/2021accepted90

Do you need the next level of professionalism?

Upgrade your account now!