Description
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Remediation
References
Related Vulnerabilities
Liferay Portal Incorrect Authorization Vulnerability (CVE-2024-25604)
MediaWiki Missing Authentication for Critical Function Vulnerability (CVE-2019-12468)
SharePoint Improper Input Validation Vulnerability (CVE-2019-1296)
SharePoint CVE-2023-24950 Vulnerability (CVE-2023-24950)
RubyGems Improper Input Validation Vulnerability (CVE-2018-1000077)