Davide D'Alto - Security Researcher - Exploit Intelligence Platform

CVE-2019-10219 WRITEUP MEDIUM WRITEUP

Hibernate Validator < 6.0.18 - Cross-Site Scripting via SafeHtml Validator Annotation

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

CVSS 6.1

View Code

CVE-2019-10219 WRITEUP MEDIUM WRITEUP

Hibernate Validator < 6.0.18 - Cross-Site Scripting via SafeHtml Validator Annotation

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

CVSS 6.1

View Code

CVE-2019-10219 WRITEUP MEDIUM WRITEUP

Hibernate Validator < 6.0.18 - Cross-Site Scripting via SafeHtml Validator Annotation

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

CVSS 6.1

View Code