XSS Vulnerability in OWASP AntiSamy before 1.5.5

XSS Vulnerability in OWASP AntiSamy before 1.5.5

CVE-2016-10006 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

In OWASP AntiSamy before 1.5.5, by submitting a specially crafted input (a tag that supports style with active content), you could bypass the library protections and supply executable code. The impact is XSS.

Learn more about our Web Application Penetration Testing UK.