XSS Vulnerability in Hibernate-Validator's SafeHtml Validator Annotation

XSS Vulnerability in Hibernate-Validator's SafeHtml Validator Annotation

CVE-2019-10219 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

Learn more about our Web Application Penetration Testing UK.