Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Theguardian Subscribe
Filtered by product Html-janitor
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-0928 1 Theguardian 1 Html-janitor 2019-10-09 4.3 MEDIUM 6.1 MEDIUM
html-janitor node module suffers from an External Control of Critical State Data vulnerability via user-control of the '_sanitized' variable causing sanitization to be bypassed.