Com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer
This hub aggregates every CVE we track for Com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
3
CVEs tracked
1
Critical
0
High
0
In CISA KEV
Severity distribution
LOW1MEDIUM1CRITICAL1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 3 most recently published vulnerabilities affecting Com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer.
- CVE-2025-66021OWASP Java HTML Sanitizer is vulnerable to XSS via noscript tag and improper style tag sanitization6.1
- CVE-2021-42575The OWASP Java HTML Sanitizer before 20211018.1 does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.9.8
- CVE-2011-4457OWASP HTML Sanitizer (aka owasp-java-html-sanitizer) before 88, when JavaScript is disabled, allows user-assisted remote attackers to obtain potentially sensitive information via a crafted FORM ele...2.6
Product normalization is registry-driven with AI assist and human review. How it works