CVE-2011-4457
17.11.2011, 23:55
OWASP HTML Sanitizer (aka owasp-java-html-sanitizer) before 88, when JavaScript is disabled, allows user-assisted remote attackers to obtain potentially sensitive information via a crafted FORM element within a NOSCRIPT element.Enginsight
| Vendor | Product | Version |
|---|---|---|
| owasp-java-html-sanitizer_project | owasp-java-html-sanitizer | 𝑥 ≤ 83 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration