guardian/html-janitor

Releases16

Frequency4 months 1 week

Last Release over 7 years ago

Stars52

Scribe module - DO NOT DELETE

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2017-0928 ↗	Jun 4, 2018Monday, 4 June 2018, 19:29	—	4.3 MEDIUM
html-janitor node module suffers from an External Control of Critical State Data vulnerability via user-control of the '_sanitized' variable causing sanitization to be bypassed.
CVE-2017-0931 ↗	Jun 4, 2018Monday, 4 June 2018, 19:29	6.1 MEDIUM	4.3 MEDIUM
html-janitor node module suffers from a Cross-Site Scripting (XSS) vulnerability via clean() accepting user-controlled values.