The serializer in html5lib prior to 0.99999999 might allow remote malicious users to conduct cross-site scripting (XSS) attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
html5lib html5lib |