Security Advisory

CVE-2021-23899

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-13 15:49:56

Last updated 2024-08-03 19:14:09

Assigner mitre

State PUBLISHED

Description

OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input. This allows an attacker to inject arbitrary HTML or XML into embedding documents.

← Browse all CVEs View on cve.org ↗