CVE-2014-125128 | sanitize-html up to 1.0.2 Anchor Tag naughtyHref cross site scripting

A vulnerability described as problematic has been identified in sanitize-html up to 1.0.2. This vulnerability affects the function naughtyHref of the component Anchor Tag Handler. Executing manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2014-125128. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More