Known vulnerabilities in Cure53 DOMPurify 2.0.2

Vendor: Cure53
Website: https://cure53.de/
Total Security Bulletins: 8

Security bulletins (8)

Secuity bulletin Severity Status Published
SB20250820123: Path traversal in cure53 DOMPurify High
Patched
20.08.2025
SB2024103154: Prototype polution in DOMPurify Medium
Patched
31.10.2024
SB20241022382: DOM-based XSS in DOMPurify Medium
Patched
22.10.2024
SB2024092751: Prototype polution in DOMPurify Medium
Patched
27.09.2024
SB2020121918: Cross-site scripting in dompurify package for NPM Low
Patched
19.12.2020
SB2020100725: Cross-site scripting in Cure53 DOMPurify Medium
Patched
07.10.2020
SB2019102414: Cross-site scripting in DOMPurify Low
Patched
24.10.2019
SB2019100407: Cross-site scripting in dompurify package for Node.js Low
Patched
04.10.2019