VulnerableCode Package Details - pkg:pypi/html5lib@0.999999999

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/html5lib@0.999999999

Essentials
History (2)

purl	pkg:pypi/html5lib@0.999999999

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-hks7-63m9-cbgq	The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of the < (less than) character in attribute values.	CVE-2016-9909 GHSA-v9v9-xffq-rwr4 PYSEC-2017-14
VCID-xdme-w78p-pkbb	The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909.	CVE-2016-9910 GHSA-8f6m-gfq9-g33v PYSEC-2017-15

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:04:30.654659+00:00	Pypa Importer	Fixing	VCID-xdme-w78p-pkbb	https://github.com/pypa/advisory-database/blob/main/vulns/html5lib/PYSEC-2017-15.yaml	38.6.0
2026-06-02T04:04:30.568965+00:00	Pypa Importer	Fixing	VCID-hks7-63m9-cbgq	https://github.com/pypa/advisory-database/blob/main/vulns/html5lib/PYSEC-2017-14.yaml	38.6.0