OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input. This allows an attacker to inject arbitrary HTML or XML into embedding documents.
Go to Source of this post
Author Of this post:
Dedicated Forum to help removing adware, malware, spyware, ransomware, trojans, viruses and more!
OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input. This allows an attacker to inject arbitrary HTML or XML into embedding documents.
Go to Source of this post
Author Of this post: