AVG-2629 log

Package python-lxml
Status Fixed
Severity Medium
Type cross-site scripting
Affected 4.6.4-3
Fixed 4.6.5-1
Current 4.9.1-1 [extra]
Ticket None
Created Mon Dec 13 19:17:38 2021
Issue Severity Remote Type Description
CVE-2021-43818 Medium Yes Cross-site scripting
There's a flaw in python-lxml's HTML Cleaner component, which is responsible for sanitizing HTML and Javascript. An attacker who is able to submit a crafted...