Hackerone Sanitize-Html Node Module vulnerabilities
2 known vulnerabilities affecting hackerone/sanitize-html_node_module.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2017-16016MEDIUMCVSS 6.1v<=1.11.12018-06-04
CVE-2017-16016 [MEDIUM] CWE-79 CVE-2017-16016: Sanitize-html is a library for scrubbing html input of malicious values. Versions 1.11.1 and below a
Sanitize-html is a library for scrubbing html input of malicious values. Versions 1.11.1 and below are vulnerable to cross site scripting (XSS) in certain scenarios: If allowed at least one nonTextTags, the result is a potential XSS vulnerability.
cvelistv5nvd
CVE-2017-16017MEDIUMCVSS 6.1v<=1.2.22018-06-04
CVE-2017-16017 [MEDIUM] CWE-79 CVE-2017-16017: sanitize-html is a library for scrubbing html input for malicious values Versions 1.2.2 and below ha
sanitize-html is a library for scrubbing html input for malicious values Versions 1.2.2 and below have a cross site scripting vulnerability.
cvelistv5nvd