Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
owasp java html sanitizer vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-42575
The OWASP Java HTML Sanitizer prior to 20211018.1 does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.
Owasp Java Html Sanitizer
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier
Oracle Primavera Unifier 19.12
Oracle Primavera Unifier 20.12
Oracle Primavera Unifier 21.12
Oracle Middleware Common Libraries And Tools 12.2.1.4.0
Oracle Middleware Common Libraries And Tools 12.2.1.3.0
2.6
CVSSv2
CVE-2011-4457
OWASP HTML Sanitizer (aka owasp-java-html-sanitizer) prior to 88, when JavaScript is disabled, allows user-assisted remote malicious users to obtain potentially sensitive information via a crafted FORM element within a NOSCRIPT element.
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer 42
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer 50
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer 48
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer 74
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started