issues
search
OWASP
/
java-html-sanitizer
Takes third-party HTML and produces HTML that is safe to embed in your web application. Fast and easy to configure.
Other
833
stars
210
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Issue while disallowing attributes matching pattern
#292
subbudvk
opened
7 months ago
0
xxx-large font-size is discarded when allowStyling() is used
#291
Ashish-Singh-B
closed
6 months ago
6
CSS property `overflow-wrap` not included in CssSchema definition list
#290
kfritz
closed
5 months ago
0
Sanitizer converting font names in 'style' attribute value to lower case
#289
anupbhore
opened
9 months ago
0
Licensing issue: BSD-3-Clause or BSD-2-Clause?
#288
stefan-hdt
opened
9 months ago
1
Remove URL length constraint
#287
ioleo
opened
10 months ago
3
Vulnerable dependency guava:30.1.jre
#286
aschufft
opened
10 months ago
3
bug: closing tag for </html> misplaced
#285
woodpexer
opened
1 year ago
1
Bump guava from 30.1-jre to 32.0.0-jre in /parent
#284
dependabot[bot]
closed
5 months ago
5
<span> elements get removed even when allowed by the policy
#283
kocakosm
opened
1 year ago
2
Guava 32.0.0-jre fixes multiple CVE's
#282
melloware
closed
1 year ago
2
org.springframework.web.multipart.support.MissingServletRequestPartException: Required request part 'issueModel' is not present
#281
bhargavivuttaravilli123
opened
1 year ago
1
noopener noreferrer getting added every time even if "noopener noreferrer" already exist
#280
anupamamanish
opened
1 year ago
4
How to customize the policy after defining the policy.
#279
zubairkhan1133
opened
1 year ago
0
Behaviour with malformed HTML Input
#278
subbudvk
closed
7 months ago
0
independent attribute auto add value
#277
kafecat
opened
1 year ago
0
"<" symbol with text inputs getting cleared, after applied the sanitize
#276
SasiprabuK
opened
1 year ago
3
Allow disabling the default attribute guards from HtmlPolicyBuilder
#275
rombert
opened
1 year ago
0
Bump protobuf-java from 3.9.1 to 3.16.3 in /parent
#274
dependabot[bot]
closed
5 months ago
0
Encoding.encodeHtmlAttribOnto visibility
#273
ihass
opened
1 year ago
0
Remove Guava dependency and update to Java 9
#272
claudioweiler
closed
5 months ago
25
Clarify which BSD license applies
#271
lcoller
opened
1 year ago
1
Incorrect escaping for inline svg+xml data image
#270
brsyuksel
opened
1 year ago
0
Question: How to not escape characters in plain text
#269
kennytv
closed
1 year ago
0
Sanitizing embedded css classes
#268
ragcrix
opened
2 years ago
1
add inAttribute and change parameter order
#267
yangbongsoo
opened
2 years ago
0
Fix missing null checks in uses of consumeIdentOrUrlOrFunctions
#266
mikesamuel
closed
2 years ago
0
Stroke and stroke-width are considered invalid
#265
mb34890
opened
2 years ago
1
How to add new possible values(props) for existing DEFAULT css properties.
#264
lakshmisagar-as
opened
2 years ago
0
tel URIs: Incorrect escaping due to missing RFC 3966 "tel:" URI syntax support/parsing
#263
jmiserez
opened
2 years ago
0
Extra characters got added during sanitization of html
#262
arpitbansal1581
opened
2 years ago
1
Extra characters got added during sanitization of html
#261
arpitbansal1581
closed
2 years ago
2
Discrepancies of results when sanitizing allowed tags
#260
Pamplemousse
opened
2 years ago
2
float in style attribute will be remove when using allowStyling()
#259
Sanan33
closed
2 years ago
0
Stripping off the contents when the extra comment tag has added with never ending
#258
rupeshtelus
opened
2 years ago
3
Content after script tag completely deleted?
#257
spyro2000
opened
2 years ago
1
I would like to validate
#256
Pamplemousse
closed
1 year ago
3
Decode attribute content differently from text node content
#255
mikesamuel
closed
2 years ago
0
Wrong sanitised output for link
#254
alex-alvarezg
closed
2 years ago
7
How to validate and throw error on invalid closing tags?
#253
KishorMandve
opened
2 years ago
0
Issue for tr td th tbody
#252
jimmyleeeeee
opened
2 years ago
0
Stripping off the contents when Child Combinator are present in the media queries
#251
log2akshat
closed
5 months ago
11
Consider clarifying thread safety javadocs
#250
lread
opened
2 years ago
0
Consider allowing different valid protocols to be applied to specific elements->attributes.
#249
lread
closed
2 years ago
1
Fix allowAttributes().globally() (#247)
#248
mymhealthltd-joshengland
closed
5 months ago
2
Array out of bounds exception on HtmlPolicyBuilder initialization
#247
mymhealthltd-joshengland
opened
2 years ago
0
Don't Support <![CDATA[ ]]>
#246
jimmyleeeeee
opened
2 years ago
0
Randomized test failure
#245
spaffrath
opened
2 years ago
0
Bump protobuf-java from 3.9.1 to 3.16.1 in /parent
#244
dependabot[bot]
closed
1 year ago
1
Enhancement: Extend HtmlChangeListener to also include the rejected content/value
#243
ghost
opened
2 years ago
2
Previous
Next