Critical Vulnerability Information Vulnerability Type: - XSS (Cross-Site Scripting) Affected Versions: - >= 3.0.0 Unaffected Versions: - < 3.0.0 Fixed Versions: - 5.0.0.1, 4.2.7.1, 3.2.22.3 Vulnerability Description: - When text declared as "HTML safe" is passed as an attribute value to tag helpers, quotes are not escaped, leading to XSS attacks. Impact Code Example: - Some helpers like may mark strings as "HTML safe", so affected code may look like: Mitigation Measures: - Upgrade to a fixed version. - Apply the provided patches. - Manually escape quotes, as shown in the example below: CVE ID: - CVE-2016-6316 Reporter: - Andrew Carpenter Attached Files: - 3-2-attribute-xss.patch (3218 bytes) - 4-2-attribute-xss.patch (2244 bytes) - 5-0-attribute-xss.patch (2591 bytes)