Security Advisory

CVE-2021-27671

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-25 00:33:48

Last updated 2024-08-03 21:26:10

Assigner mitre

State PUBLISHED

Description

An issue was discovered in the comrak crate before 0.9.1 for Rust. XSS can occur because the protection mechanism for data: and javascript: URIs is case-sensitive, allowing (for example) Data: to be used in an attack.

← Browse all CVEs View on cve.org ↗