Skip to main content
Loading…
    CVE-2014-125128 — 'sanitize-html' prior to version 1.0.3 is vulnerable to Cross-site Scripting (XSS). The function 'naughtyHref' doesn't properly validate the hyperreference (`href`) attribute in an — CVE Database · The Intelligence Room