CVE-2021-26540

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-26540

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-26540.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-26540

Aliases

Published

2021-02-08T17:15:13.737Z

Modified

2026-01-06T15:12:08.166728Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVSS Calculator

Summary

[none]

Details

Apostrophe Technologies sanitize-html before 2.3.2 does not properly validate the hostnames set by the "allowedIframeHostnames" option when the "allowIframeRelativeUrls" is set to true, which allows attackers to bypass hostname whitelist for iframe element, related using an src value that starts with "/\example.com".

References

Affected packages

Git / github.com/apostrophecms/sanitize-html

Affected ranges

Type: GIT
Repo: https://github.com/apostrophecms/sanitize-html
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

fd3cb540d1b46855cb01825e6b17cabbc4f514fb

Affected versions

1.*

1.10.1

1.11.0

1.11.1

1.11.4

1.18.2

1.18.3

1.18.4

1.18.5

1.19.0

1.19.1

1.19.2

1.19.3

1.20.0

1.21.0

1.21.1

1.22.0

1.27.4

2.*

2.0.0

2.1.0

2.1.1

2.1.2

2.2.0

2.3.0

2.3.1

v1.*

v1.5.2

v1.7.0

v1.7.1

v1.7.2

v1.8.0

v1.9.0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-26540.json"