Vulnerability Database
Blog
FAQ
Docs
CVE-2025-47828
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-47828
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-47828.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-47828
Aliases
GHSA-m7gm-v253-56hh
Published
2025-05-11T03:15:23Z
Modified
2025-05-17T07:44:33Z
Summary
[none]
Details
Lumi H5P-Nodejs-library before 9.3.3 omits a sanitizeHtml call for plain text strings.
References
https://github.com/Lumieducation/H5P-Nodejs-library/compare/v9.3.2...v9.3.3
https://github.com/Lumieducation/H5P-Nodejs-library/pull/3894
Affected packages
Git
/
github.com/lumieducation/h5p-nodejs-library
Affected ranges
Type
GIT
Repo
https://github.com/lumieducation/h5p-nodejs-library
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
5730c0231dd77d70dcc0035d59b116eca930cd26
CVE-2025-47828 - OSV