Skip to content

Jinja vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter

Moderate severity GitHub Reviewed Published May 5, 2024 in pallets/jinja • Updated Jun 10, 2024

No closed alerts for this advisory

Give feedback on Dependabot alerts