Htacg - Tidy CVE

Filtered by vendor Htacg Subscribe

Filtered by product Tidy

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-17497	1 Htacg	1 Tidy	2020-02-04	5.0 MEDIUM	7.5 HIGH
In Tidy 5.7.0, the prvTidyTidyMetaCharset function in clean.c allows attackers to cause a denial of service (Segmentation Fault), because the currentNode variable in the "children of the head" processing feature is modified in the loop without validating the new value.
CVE-2017-13692	1 Htacg	1 Tidy	2017-08-30	5.0 MEDIUM	7.5 HIGH
In Tidy 5.5.31, the IsURLCodePoint function in attrs.c allows attackers to cause a denial of service (Segmentation Fault), as demonstrated by an invalid ISALNUM argument.

Vulnerabilities (CVE)