Description
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2013-5854 Vulnerability (CVE-2013-5854)
WordPress Plugin Shipping Servientrega Woocommerce Arbitrary File Upload (2.0.3)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0799)
OpenSSL Uncontrolled Resource Consumption Vulnerability (CVE-2016-8610)