Headline
GHSA-8hgg-xxm5-3873: DOMPurify Open Redirect vulnerability
DOMPurify before 1.0.11 allows reverse tabnabbing in demos/hooks-target-blank-demo.html because links lack a ‘rel="noopener noreferrer"’ attribute.
DOMPurify Open Redirect vulnerability
Moderate severity GitHub Reviewed Published Nov 14, 2023 to the GitHub Advisory Database • Updated Nov 15, 2023