CVE-2026-40301 | rhukster dom-sanitizer up to 1.0.9 DOM/SVG/MathML DOMSanitizer::sanitize cross site scripting (GHSA-93vf-569f-22cq)

A vulnerability marked as problematic has been reported in rhukster dom-sanitizer up to 1.0.9. Affected by this issue is the function DOMSanitizer::sanitize of the component DOM/SVG/MathML. This manipulation causes cross site scripting.

This vulnerability is tracked as CVE-2026-40301. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More