Known vulnerabilities in Cure53 DOMPurify 2.0.16
3.3.1
3.3.0
3.2.7
3.2.6
3.2.5
3.2.4
3.2.3
2.5.8
3.2.2
3.2.1
3.2.0
2.2.5
1.1.1
1.1.0
0.4.0
3.1.7
2.5.7
3.1.6
2.5.6
3.1.5
2.5.5
3.1.4
2.5.4
2.5.3
3.1.3
3.1.2
2.5.2
3.1.1
2.5.1
3.1.0
2.5.0
3.0.11
2.4.9
3.0.10
2.4.8
3.0.9
3.0.8
3.0.7
3.0.6
3.0.5
2.4.7
3.0.4
2.4.6
3.0.3
3.0.2
3.0.1
2.4.5
3.0.0
2.4.4
2.4.3
2.4.2
2.4.1
2.4.0
2.3.12
2.3.11
2.3.10
2.3.9
2.3.8
2.3.7
2.3.6
2.3.5
2.3.4
2.3.3
2.3.2
2.3.1
2.3.0
2.2.9
2.1.0
2.1.1
2.2.8
2.2.7
2.2.4
2.2.6
2.2.3
2.2.1
2.2.2
2.2.0
2.0.17
2.0.16
2.0.15
2.0.13
2.0.14
2.0.12
2.0.11
2.0.10
2.0.9
2.0.8
2.0.7
2.0.6
2.0.5
2.0.4
2.0.3
2.0.2
2.0.1
2.0.0
1.0.11
1.0.10
1.0.9
1.0.8
1.0.7
1.0.6
1.0.5
1.0.4
1.0.3
1.0.2
1.0.1
1.0.0
0.9.0
0.8.9
0.8.8
0.8.7
0.8.6
0.8.5
0.8.4
0.8.3
0.8.2
0.8.1
0.8.0
0.7.4
0.7.3
0.7.2
0.7.1
0.7.0
0.6.7
0.6.6
0.6.5
0.6.4
0.6.3
0.6.2
0.6.1
0.6.0
0.4.5
0.4.4
0.4.3
0.4.2
0.4
0.3
0.1
Security bulletins (6)
| Secuity bulletin | Severity | Status | Published |
|---|---|---|---|
| SB20250820123: Path traversal in cure53 DOMPurify | High | 20.08.2025 | |
| SB2024103154: Prototype polution in DOMPurify | Medium | 31.10.2024 | |
| SB20241022382: DOM-based XSS in DOMPurify | Medium | 22.10.2024 | |
| SB2024092751: Prototype polution in DOMPurify | Medium | 27.09.2024 | |
| SB2020121918: Cross-site scripting in dompurify package for NPM | Low | 19.12.2020 | |
| SB2020100725: Cross-site scripting in Cure53 DOMPurify | Medium | 07.10.2020 |