| Bug | buster | bullseye | bookworm | sid | Description |
|---|
| CVE-2022-28367 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | OWASP AntiSamy before 1.6.6 allows XSS via HTML tag smuggling on STYLE ... |
| CVE-2022-28366 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | Certain Neko-related HTML parsers allow a denial of service via crafte ... |
| CVE-2021-35043 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | OWASP AntiSamy before 1.6.4 allows XSS via HTML attributes when using ... |
| CVE-2017-14735 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | OWASP AntiSamy before 1.5.7 allows XSS via HTML5 entities, as demonstr ... |
| CVE-2016-10006 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | In OWASP AntiSamy before 1.5.5, by submitting a specially crafted inpu ... |