CVE-2026-47759: Ast Node Unsanitized Attribute Unprefixing
Extracting and un-prefixing attributes dynamically (e.g., from 'data-mce-p-onclick' to 'onclick') and assigning them directly to an AST node via `.attr()` without passing the resulting structure through a sanitizer can lead to stored XSS. Pre-fixed attributes are normally allowed by HTML sanitizers; stripping their prefixes bypasses this security check. Inst
TSgreprules fetch cve-2026-47759-ast-node-unsanitized-attribute-unprefixing --engine opengrepDescription
Extracting and un-prefixing attributes dynamically (e.g., from 'data-mce-p-onclick' to 'onclick') and assigning them directly to an AST node via `.attr()` without passing the resulting structure through a sanitizer can lead to stored XSS. Pre-fixed attributes are normally allowed by HTML sanitizers; stripping their prefixes bypasses this security check. Inst
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0