OpenCVE

Filtered by vendor Paypal Subscriptions

Filtered by product Braintree\/sanitize-url Subscriptions

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2022-48345	1 Paypal	1 Braintree\/sanitize-url	2024-11-21	6.1 Medium
sanitize-url (aka @braintree/sanitize-url) before 6.0.2 allows XSS via HTML entities.
CVE-2021-23648	3 Fedoraproject, Paypal, Redhat	4 Fedora, Braintree\/sanitize-url, Enterprise Linux and 1 more	2024-11-21	5.4 Medium
The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting (XSS) due to improper sanitization in sanitizeUrl function.

Page 1 of 1.