The OWASP Java HTML Sanitizer before 20211018.1 does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Java_html_sanitizer |
Owasp |
* |
20211018.2 (excluding) |
References