In Mozilla Bleach prior to 3.12, a mutation XSS in bleach.clean when RCDATA and either svg or math tags are whitelisted and the keyword argument strip=False.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bleach |
||
fedoraproject fedora 33 |