Skip to content

CVE-2026-42502 #49

Description

@opensourceways-bot

一、漏洞信息
漏洞编号:CVE-2026-42502
漏洞归属组件:net
漏洞归属分支:默认分支
漏洞归属的版本:v0.23.0
漏洞修复版本: 0.55.0
CVSS分值:
 BaseScore: N/A None
 Vector: N/A

漏洞简述:
Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering.

漏洞公开时间:2026-05-22 16:16:20
漏洞创建时间:2026-06-24 02:58:28
漏洞详情参考链接:
https://nvd.nist.gov/vuln/detail/CVE-2026-42502

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions