Microco Bluemonday
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Microco Bluemonday.
By the Year
In 2026 there have been 0 vulnerabilities in Microco Bluemonday. Bluemonday did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 2 | 7.95 |
It may take a day or so for new Bluemonday vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microco Bluemonday Security Vulnerabilities
The bluemonday sanitizer before 1.0.16 for Go
CVE-2021-42576
9.8 - Critical
- October 18, 2021
The bluemonday sanitizer before 1.0.16 for Go, and before 0.0.8 for Python (in pybluemonday), does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.
bluemonday before 1.0.5
CVE-2021-29272
6.1 - Medium
- March 27, 2021
bluemonday before 1.0.5 allows XSS because certain Go lowercasing converts an uppercase Cyrillic character, defeating a protection mechanism against the "script" string.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microco Bluemonday or by Microco? Click the Watch button to subscribe.
