Filtered by vendor Paypal
Subscriptions
Filtered by product Braintree\/sanitize-url
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2021-23648 | 2 Fedoraproject, Paypal | 2 Fedora, Braintree\/sanitize-url | 2023-11-07 | 6.1 Medium |
The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting (XSS) due to improper sanitization in sanitizeUrl function. | ||||
CVE-2022-48345 | 1 Paypal | 1 Braintree\/sanitize-url | 2023-03-02 | 6.1 Medium |
sanitize-url (aka @braintree/sanitize-url) before 6.0.2 allows XSS via HTML entities. |
Page 1 of 1.