CVE-2024-21501 | sanitize-html up to 2.12.0 Style Attribute information disclosure

Posted by Angelo Barbosa | Feb 24, 2024 | CVE

A vulnerability, which was classified as problematic, was found in sanitize-html up to 2.12.0. This affects an unknown part of the component Style Attribute Handler. The manipulation leads to information disclosure.

This vulnerability is uniquely identified as CVE-2024-21501. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21501 | sanitize-html up to 2.12.0 Style Attribute information disclosure

Related Posts

CVE-2024-2441 | VikBooking Hotel Booking Engine & PMS Plugin up to 1.6.7 on WordPress Setting authorization

CVE-2024-29805 | ShopUp Shipping with Venipak for WooCommerce Plugin up to 1.19.5 on WordPress cross site scripting

CVE-2023-52907 | Linux Kernel up to 6.1.6 mm/kasan/shadow.c pn533_usb_send_frame use after free

CVE-2024-30484 | RT Easy Builder Plugin up to 2.0 on WordPress authorization