Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
owasp java html sanitizer vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-42575
The OWASP Java HTML Sanitizer prior to 20211018.1 does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.
Owasp Java Html Sanitizer
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier
Oracle Primavera Unifier 19.12
Oracle Primavera Unifier 20.12
Oracle Primavera Unifier 21.12
Oracle Middleware Common Libraries And Tools 12.2.1.4.0
Oracle Middleware Common Libraries And Tools 12.2.1.3.0
NA
CVE-2011-4457
OWASP HTML Sanitizer (aka owasp-java-html-sanitizer) prior to 88, when JavaScript is disabled, allows user-assisted remote malicious users to obtain potentially sensitive information via a crafted FORM element within a NOSCRIPT element.
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer 42
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer 50
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer 48
Owasp-java-html-sanitizer Project Owasp-java-html-sanitizer 74
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started