Uploaded image for project: 'SonarQube'
  1. SonarQube
  2. SONAR-14003

Fix mutation XSS in DOMPurify

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 7.9.4, 8.5
    • Fix Version/s: 8.6
    • Component/s: None
    • Labels:
      None
    • Edition:
      Community
    • Production Notes:
      None

      Description

      DOMPurify is vulnerable to a mutation XSS as reported in CVE-2020-26870.

        Attachments

          Activity

            People

            Assignee:
            jeremy.davis Jeremy Davis
            Reporter:
            malena.ebert Malena Ebert
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Due:
              Created:
              Updated:
              Resolved: