Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/mozilla/bleach

Bleach is an allowed-list-based HTML sanitizing library that escapes or strips markup and attributes
https://github.com/mozilla/bleach

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ2MngtdnJwai1xcXBx

Cross-site scripting in Bleach
Ecosystems: pypi
Packages: bleach
Source: github
Published: almost 4 years ago

High

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZxaHAtY3hnYy02d21t

regular expression denial-of-service (ReDoS) in Bleach
Ecosystems: pypi
Packages: bleach
Source: github
Published: over 4 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW02eGYtZnE3cS04NzQz

Bleach vulnerable to mutation XSS via whitelisted math or svg and raw tag
Ecosystems: pypi
Packages: bleach
Source: github
Published: over 4 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE2NW0tcHYzZi13cjVy

XSS in Bleach when noscript and raw tag whitelisted
Ecosystems: pypi
Packages: bleach
Source: github
Published: almost 5 years ago

Critical

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05bXEtcDJmOS1jZnF2

Bleach URI Scheme Restriction Bypass
Ecosystems: pypi
Packages: bleach
Source: github
Published: almost 6 years ago