Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/bleach@3.2.2
purl pkg:pypi/bleach@3.2.2
Next non-vulnerable version 3.3.0
Latest non-vulnerable version 3.3.0
Risk 3.1
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-mqaz-y2xw-sya2
Aliases:
CVE-2021-23980
GHSA-vv2x-vrpj-qqpq
GMS-2021-168
PYSEC-2021-865
In Mozilla Bleach before 3.3.0, a mutation XSS affects users calling bleach.clean with math or svg; p or br; and style, title, noscript, script, textarea, noframes, iframe, or xmp tags with strip_comments=False.
3.3.0
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-29T19:54:34.065306+00:00 GitLab Importer Affected by VCID-mqaz-y2xw-sya2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/bleach/GMS-2021-168.yml 38.5.0
2026-04-16T21:16:46.444043+00:00 GitLab Importer Affected by VCID-mqaz-y2xw-sya2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/bleach/GMS-2021-168.yml 38.4.0
2026-04-11T22:28:56.492780+00:00 GitLab Importer Affected by VCID-mqaz-y2xw-sya2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/bleach/GMS-2021-168.yml 38.3.0
2026-04-02T22:40:31.660155+00:00 GitLab Importer Affected by VCID-mqaz-y2xw-sya2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/bleach/GMS-2021-168.yml 38.1.0
2026-04-01T15:03:24.797886+00:00 PyPI Importer Affected by VCID-mqaz-y2xw-sya2 https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.0.0
2026-04-01T12:43:17.825295+00:00 Pypa Importer Affected by VCID-mqaz-y2xw-sya2 https://github.com/pypa/advisory-database/blob/main/vulns/bleach/PYSEC-2021-865.yaml 38.0.0