Vulnerabilities > SVG Sanitizer Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-14	CVE-2022-23638	Cross-site Scripting vulnerability in Svg-Sanitizer Project Svg-Sanitizer svg-sanitizer is a SVG/XML sanitizer written in PHP. network svg-sanitizer-project CWE-79	4.3
2019-12-11	CVE-2019-10772	Cross-site Scripting vulnerability in Svg-Sanitizer Project Svg-Sanitizer It is possible to bypass enshrined/svg-sanitize before 0.13.1 using the "xlink:href" attribute due to mishandling of the xlink namespace by the sanitizer. network svg-sanitizer-project CWE-79	4.3
2019-11-11	CVE-2019-18857	Cross-site Scripting vulnerability in Svg-Sanitizer Project Svg-Sanitizer darylldoyle svg-sanitizer before 0.12.0 mishandles script and data values in attributes, as demonstrated by unexpected whitespace such as in the javascript :alert substring. network low complexity svg-sanitizer-project CWE-79	5.0

Vulnerabilities > SVG Sanitizer Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"SVG Sanitizer Project"}]}