GMS-2021-168: Improper Neutralization of Input During Web Page Generation
(updated )
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in bleach.
References
- bugzilla.mozilla.org/show_bug.cgi?id=1689399
- cure53.de/fp170.pdf
- github.com/advisories/GHSA-vv2x-vrpj-qqpq
- github.com/mozilla/bleach/blob/79b7a3c5e56a09d1d323a5006afa59b56162eb13/CHANGES
- github.com/mozilla/bleach/commit/79b7a3c5e56a09d1d323a5006afa59b56162eb13
- github.com/mozilla/bleach/security/advisories/GHSA-vv2x-vrpj-qqpq
- pypi.org/project/bleach/
Code Behaviors & Features
Detect and mitigate GMS-2021-168 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →