Vulnerabilities > Antisamy Project > Antisamy > 1.6.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-02 | CVE-2024-23635 | Cross-site Scripting vulnerability in Antisamy Project Antisamy AntiSamy is a library for performing fast, configurable cleansing of HTML coming from untrusted sources. | 6.1 |
2023-10-09 | CVE-2023-43643 | Unspecified vulnerability in Antisamy Project Antisamy AntiSamy is a library for performing fast, configurable cleansing of HTML coming from untrusted sources. | 6.1 |
2022-04-21 | CVE-2022-28366 | Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction (PI) input that causes excessive heap memory consumption. | 7.5 |
2022-04-21 | CVE-2022-28367 | Cross-site Scripting vulnerability in Antisamy Project Antisamy OWASP AntiSamy before 1.6.6 allows XSS via HTML tag smuggling on STYLE content with crafted input. | 6.1 |
2022-04-21 | CVE-2022-29577 | Cross-site Scripting vulnerability in multiple products OWASP AntiSamy before 1.6.7 allows XSS via HTML tag smuggling on STYLE content with crafted input. | 6.1 |
2021-07-19 | CVE-2021-35043 | Cross-site Scripting vulnerability in multiple products OWASP AntiSamy before 1.6.4 allows XSS via HTML attributes when using the HTML output serializer (XHTML is not affected). | 6.1 |