Security Advisory

CVE-2023-49146

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-22 00:00:00
Last updated 2024-08-02 21:46:29
Assigner mitre
State PUBLISHED

Description

DOMSanitizer (aka dom-sanitizer) before 1.0.7 allows XSS via an SVG document because of mishandling of comments and greedy regular expressions.

← Browse all CVEs View on cve.org ↗