CVE-2022-23638

Published: 2022-02-14T21:15Z

Last Modified: 2024-11-21T06:48Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

svg-sanitizer is a SVG/XML sanitizer written in PHP. A cross-site scripting vulnerability impacts all users of the `svg-sanitizer` library prior to version 0.15.0. This issue is fixed in version 0.15.0. There is currently no workaround available. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt