Description
This affects the package datatables.net before 1.11.3. If an array is passed to the HTML escape entities function it would not have its contents escaped.
Remediation
References
Related Vulnerabilities
WordPress Plugin CF7 Manual Spam Blocker Privilege Escalation (1.0)
Grafana Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-19039)
Jboss EAP CVE-2012-5626 Vulnerability (CVE-2012-5626)
PHP Resource Management Errors Vulnerability (CVE-2011-3267)
WordPress Plugin Custom 404 Pro Unspecified Vulnerability (3.7.0)