CVE-2016-9909

Source
Severity Low
Remote Yes
Type Cross-site scripting
Description
A potential cross site scripting vulnerability was found in python- html5lib due to unquoted attributes that need escaping in legacy browsers.
Group Package Affected Fixed Severity Status Ticket
AVG-100 python-html5lib, python2-html5lib 0.9999999-2 0.999999999-1 Low Fixed
Date Advisory Group Package Severity Description
12 Dec 2016 ASA-201612-13 AVG-100 python-html5lib Low cross-site scripting
12 Dec 2016 ASA-201612-12 AVG-100 python2-html5lib Low cross-site scripting
References
https://github.com/html5lib/html5lib-python/issues/11