Description
Cure53 DOMPurify before 2.0.17 allows mutation XSS. This occurs because a serialize-parse roundtrip does not necessarily return the original DOM tree, and a namespace can change from HTML to MathML, as demonstrated by nesting of FORM elements.
Remediation
References
Related Vulnerabilities
phpBB CVE-2010-1630 Vulnerability (CVE-2010-1630)
WordPress Plugin Build App Online SQL Injection (1.0.18)
WordPress Plugin WP-SpamFree Anti-Spam 'id' Parameter SQL Injection (3.2.1)
Drupal Improper Input Validation Vulnerability (CVE-2017-6921)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-20098)