OWASP Json Sanitizer
By the Year
In 2024 there have been 0 vulnerabilities in OWASP Json Sanitizer . Json Sanitizer did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 2 | 8.65 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Json Sanitizer vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent OWASP Json Sanitizer Security Vulnerabilities
OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input
CVE-2021-23899
9.8 - Critical
- January 13, 2021
OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input. This allows an attacker to inject arbitrary HTML or XML into embedding documents.
XXE
OWASP json-sanitizer before 1.2.2 can output invalid JSON or throw an undeclared exception for crafted input
CVE-2021-23900
7.5 - High
- January 13, 2021
OWASP json-sanitizer before 1.2.2 can output invalid JSON or throw an undeclared exception for crafted input. This may lead to denial of service if the application is not prepared to handle these situations.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for OWASP Json Sanitizer or by OWASP? Click the Watch button to subscribe.
