CVE-2026-25543
- EPSS 0.04%
- Veröffentlicht 04.02.2026 21:45:25
- Zuletzt bearbeitet 24.02.2026 21:29:57
HtmlSanitizer is a .NET library for cleaning HTML fragments and documents from constructs that can lead to XSS attacks. Prior to versions 9.0.892 and 9.1.893-beta, if the template tag is allowed, its contents are not sanitized. The template tag is a ...
CVE-2023-44390
- EPSS 0.16%
- Veröffentlicht 05.10.2023 14:15:09
- Zuletzt bearbeitet 21.11.2024 08:25:48
HtmlSanitizer is a .NET library for cleaning HTML fragments and documents from constructs that can lead to XSS attacks. The vulnerability occurs in configurations where foreign content is allowed, i.e. either `svg` or `math` are in the list of allowe...
CVE-2020-26293
- EPSS 0.34%
- Veröffentlicht 04.01.2021 19:15:14
- Zuletzt bearbeitet 21.11.2024 05:19:47
HtmlSanitizer is a .NET library for cleaning HTML fragments and documents from constructs that can lead to XSS attacks. In HtmlSanitizer before version 5.0.372, there is a possible XSS bypass if style tag is allowed. If you have explicitly allowed th...