CVE-2019-25225 | sanitize-html 1.4.3 index.js sanitizeHtml transformTags cross site scripting (Issue 293)

Inserito da Angelo Barbosa | Set 8, 2025 | CVE

A vulnerability marked as problematic has been reported in sanitize-html 1.4.3. This affects the function sanitizeHtml of the file index.js. Performing manipulation of the argument transformTags results in cross site scripting.

This vulnerability is identified as CVE-2019-25225. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2019-25225 | sanitize-html 1.4.3 index.js sanitizeHtml transformTags cross site scripting (Issue 293)

Post correlati

CVE-2024-4422 | Comparison Slider Plugin up to 1.0.5 on WordPress cross site scripting

CVE-2025-46267 | Elecom WRC-BE36QS-B/WRC-W701-B Debug backdoor

CVE-2024-44557 | Tenda AX1806 1.0.0.1 setIptvInfo iptv.stb.mode stack-based overflow

CVE-2023-48741 | QuantumCloud AI ChatBot Plugin up to 4.7.8 on WordPress sql injection