CVE-2021-23899 – OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiter …

Vuln ID: CVE-2021-23899

Published:  2021-01-13  16:15:14Z

Description: OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input. This allows an attacker to inject arbitrary HTML or XML into embedding documents.

Source: NVD.NIST.GOV