漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Lxml 跨站脚本漏洞
Vulnerability Description
Lxml是Lxml个人开发者的一个可与Python交互用于定位Html中元素的软件。 Lxml 存在跨站脚本漏洞,该漏洞源于javascript通过noscript和style组合进行转义。以下产品及版本会受到影响:Debian stretch, Debian stretch (security), Debian buster, Debian bullseye, sid; Red Hat Software Collections, Red Hat Enterprise Linux 8, Red Hat E
CVSS Information
N/A
Vulnerability Type
N/A