GHSA-mqf3-qpc3-g26q: Silverstripe Framework has a Reflected Cross Site Scripting (XSS) in error message

GHSA-ff6q-3c9c-6cf5: Silverstripe Framework has a XSS in form messages

GHSA-7cmp-cgg8-4c82: Silverstripe Framework has a XSS via insert media remote file oembed

GHSA-m9c9-mc2h-9wjw: Lodestar snappy checksum issue

GHSA-53rv-hcvm-rpp9: Lodestar snappy decompression issue

tag.ex in Phoenix Phoenix.HTML (aka phoenix_html) before 3.0.4 allows XSS in HEEx class attributes.

**phoenix\_html allows Cross-site Scripting in HEEx class attributes**

Moderate severity GitHub Reviewed Published Jan 10, 2023 • Updated Jan 10, 2023

Headline

GHSA-5g2h-9x5v-5h3x: phoenix_html allows Cross-site Scripting in HEEx class attributes

Related news

ghsa: Latest News