Browse all 3 CVE security advisories affecting mganss. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Mganss develops security tools focused on JavaScript and web application hardening, with core use cases centered around vulnerability detection and mitigation. Historically, their work has addressed common vulnerability classes including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation risks in JavaScript environments. The security researcher has demonstrated particular expertise in identifying and documenting DOM-based XSS vulnerabilities, contributing significantly to the understanding of client-side security risks. While no major security incidents directly involving mganss have been widely reported, their CVE contributions highlight ongoing concerns in web security, particularly around JavaScript execution contexts and input validation mechanisms.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25543 | HtmlSanitizer has a bypass via template tag — HtmlSanitizerCWE-116 | 6.1AI | MediumAI | 2026-02-04 |
| CVE-2023-44390 | HtmlSanitizer vulnerable to Cross-site Scripting in Foreign Content — HtmlSanitizerCWE-79 | 6.1 | Medium | 2023-10-05 |
| CVE-2020-26293 | Possible XSS bypass if style tag is allowed — HtmlSanitizerCWE-74 | 6.1 | Medium | 2021-01-04 |
This page lists every published CVE security advisory associated with mganss. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.