In Tidy 5.7.0, the prvTidyTidyMetaCharset function in clean.c allows malicious users to cause a denial of service (Segmentation Fault), because the currentNode variable in the "children of the head" processing feature is modified in the loop without validating the new value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
htacg tidy 5.7.0 |