CVEs-PoC/2021/CVE-2021-23648.md at 52f3262c8d52545fc4e20c2a38454fc446c51385 - CVEs-PoC - MS-GitHub-Backup (Gitea)

CalvinBackup/CVEs-PoC

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-28 03:02:23 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

756 B

Raw Blame History

CVE-2021-23648

Description

The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting (XSS) due to improper sanitization in sanitizeUrl function.

POC

Reference

Github

https://github.com/ARPSyndicate/cvemon