Showing 1 - 1 of 1

CVE-2021-26539

Status Candidate

Overview

Apostrophe Technologies sanitize-html before 2.3.1 does not properly handle internationalized domain name (IDN) which could allow an attacker to bypass hostname whitelist validation set by the "allowedIframeHostnames" option.

Related Files

Red Hat Security Advisory 2021-3759-01: Posted Oct 19, 2021; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2021-3759-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.9.0. Issues addressed include bypass, denial of service, and information leakage vulnerabilities.; tags | advisory, denial of service, vulnerability; systems | linux, redhat; advisories | CVE-2021-26539, CVE-2021-26540, CVE-2021-28092, CVE-2021-28169, CVE-2021-29059, CVE-2021-3121, CVE-2021-31525, CVE-2021-32690, CVE-2021-33194, CVE-2021-33195, CVE-2021-33196, CVE-2021-33197, CVE-2021-33198, CVE-2021-34428, CVE-2021-34558, CVE-2021-36980; SHA-256 | 7265806b363eb2f9eb43a9647afb7e380c631bafc4c8c84cefa21d9b1bb6be63; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 134 files
Ubuntu 92 files
indoushka 29 files
Debian 27 files
Apple 22 files
Gentoo 20 files
nu11secur1ty 15 files
LiquidWorm 9 files
Google Security Research 6 files
jheysel-r7 4 files

File Archives

Systems

AIX (428)
Apple (2,025)
BSD (375)
CentOS (57)
Cisco (1,925)
Debian (6,853)
Fedora (1,692)
FreeBSD (1,246)
Gentoo (4,342)
HPUX (879)
iOS (357)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (46,873)
Mac OS X (687)
Mandriva (3,105)
NetBSD (256)
OpenBSD (486)
RedHat (13,930)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,960)
UNIX (9,320)
UnixWare (186)
Windows (6,590)
Other

CVE-2021-26539

Overview

Related Files

File Archive:

October 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems