Loading...

XML

Word

Printable

Details

Type: Task
Resolution: Fixed
Priority: Major
Fix Version/s: 17.0.0-rc-1
Affects Version/s: 16.9.0-rc-1
Component/s: Dependency Upgrades
Labels:
None

Difficulty:
Unknown
Similar issues:

Description

`v3.2.3`: DOMPurify 3.2.3

Fixed two conditional sanitizer bypasses discovered by @parrot409 and @Slonser
Updated the attribute clobbering checks to prevent future bypasses, thanks @parrot409

`v3.2.2`: DOMPurify 3.2.2

Fixed a possible bypass in case a rather specific config for custom elements is set, thanks @yaniv-git
Fixed several minor issues with the type definitions, thanks again @reduckted
Fixed a minor issue with the types reference for trusted types, thanks @reduckted
Fixed a minor problem with the template detection regex on some systems, thanks @svdb99

`v3.2.1`

`v3.2.0`: DOMPurify 3.2.0

Added type declarations, thanks @reduckted , @philmayfield, @aloisklink, @ssi02014 and others
Fixed a minor issue with the handling of hooks, thanks @kevin-mizu

Attachments

Activity

People

Assignee:: Manuel Leduc

Reporter:: Manuel Leduc

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 12/Dec/24 15:07

Updated:: 12/Dec/24 15:15

Resolved:: 12/Dec/24 15:15