2021-10-18 14:38:13
mitre
PUBLISHED
The OWASP Java HTML Sanitizer before 20211018.1 does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.