pkg:npm/express-xss-sanitizer

共 3 筆 CVEHIGH1MEDIUM1

✅ 檢查你的版本

所有已知漏洞

  • HIGH8.2CVE-2026-33979Express XSS Sanitizer: allowedTags/allowedAttributes bypass leads to permissive sanitization (XSS risk)
    from 0, < 2.0.2
  • MEDIUM6.1CVE-2022-21169express-xss-sanitizer vulnerable to Prototype Pollution via allowedTags attribute
    from 0, < 1.1.3
  • CVE-2025-59364express-xss-sanitizer has an unbounded recursion depth
    from 0, < 2.0.1