Out-of-date Version (DOMPurify)

Summary

Netsparker identified the target web site is using DOMPurify and detected that it is out of date. DOMPurify is a XSS sanitizer library for HTML, MathML and SVG.

Impact

Since this is an old version of the software, it may be vulnerable to attacks.

Remediation

Please upgrade your installation of DOMPurify to the latest stable version.

Classifications

PCI v3.1-6.2, PCI v3.2-6.2, CAPEC-310, OWASP PC-C1, OWASP 2013-A9

Vulnerability Index

You can search and find all vulnerabilities

Select Category

Critical
High
Medium
Low
Information

Search Vulnerability

Related Vulnerabilities

Out of Band Code Evaluation (ASP)
Out of Band Code Evaluation (Perl)
Out of Band Code Evaluation (PHP)
Version Disclosure (Apache)
Version Disclosure (Perl)

;

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO

Out-of-date Version (DOMPurify)

NETSPARKER

USE CASES

WEB SECURITY

COMPANY

Netsparker Ltd