Overview · fedora-python/lxml_html_clean · GitHub

Security

No security policy detected

This project has not set up a SECURITY.md file yet.

Report a vulnerability

javascript: URL bypass in Cleaner via xlink:href
GHSA-4jhm-jv67-739f published Jun 1, 2026 by frenzymadness

High
<base> tag injection through default Cleaner configuration
GHSA-xvp8-3mhv-424c published Mar 2, 2026 by frenzymadness

Moderate
CSS @import Filter Bypass via Unicode Escapes
GHSA-hw26-mmpg-fqfg published Mar 2, 2026 by frenzymadness

Moderate
HTML Cleaner allows crafted scripts in special contexts like svg or math to pass through
GHSA-5jfw-gq64-q45f published Nov 19, 2024 by frenzymadness

High

Learn more about advisories related to fedora-python/lxml_html_clean in the GitHub Advisory Database