CVE-2017-13692

Published August 25th, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

MEDIUM

Affected

PROJECT

Description

In Tidy 5.5.31, the IsURLCodePoint function in attrs.c allows attackers to cause a denial of service (Segmentation Fault), as demonstrated by an invalid ISALNUM argument.

htacg/tidy-html5

The granddaddy of HTML tools, with support for modern standards

GitHub

2.84K