{"url":"http://public2.vulnerablecode.io/api/packages/374771?format=json","purl":"pkg:pypi/justhtml@1.12.0","type":"pypi","namespace":"","name":"justhtml","version":"1.12.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"1.14.0","latest_non_vulnerable_version":"1.18.0","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/360022?format=json","vulnerability_id":"VCID-72kf-cb91-dkcy","summary":"JustHTML is vulnerable to XSS via code fence breakout in 
 content\n## Summary\n\n`to_markdown()` is vulnerable when serializing attacker-controlled `
` content. The `
` handler emits a fixed three-backtick fenced code block, but writes decoded text content into that fence without choosing a delimiter longer than any backtick run inside the content.\n\nAn attacker can place backticks and HTML-like text inside a sanitized `
` element so that the generated Markdown closes the fence early and leaves raw HTML outside the code block. When that Markdown is rendered by a CommonMark/GFM-style renderer that allows raw HTML, the HTML executes.\n\nThis is a bypass of the v1.12.0 Markdown hardening. That fix escaped HTML-significant characters for regular text nodes, but `
` uses a separate serialization path and does not apply the same protection.\n\n## Details\n\nThe vulnerable `
` Markdown path:\n\n- extracts decoded text from the `
` subtree\n- opens a fenced block with a fixed delimiter of ``````\n- writes the decoded text directly into the output\n- closes with another fixed ``````\n\nBecause the fence length is fixed, attacker-controlled content containing a backtick run of length 3 or more can terminate the code block. If the content also contains decoded HTML-like text such as `<img ...>`, that text appears outside the fence in the resulting Markdown and is treated as raw HTML by downstream Markdown renderers.\n\nThe issue is not that HTML-like text appears inside code blocks. The issue is that the serializer allows attacker-controlled `
` text to break out of the fixed fence.\n\n## Reproduction\n\n```python\nfrom justhtml import JustHTML\n\npayload = \"
```\\n<img src=x onerror=alert(1)>
\"\ndoc = JustHTML(payload, fragment=True)  # default sanitize=True\n\nprint(doc.to_html(pretty=False))\n# 
```\n# <img src=x onerror=alert(1)>
\n\nprint(doc.to_markdown())\n# ```\n# ```\n# \n# ```\n\n```\n\nRendered as CommonMark/GFM-style Markdown, that output is interpreted as:\n\n1. Line 1 opens a fenced code block\n2. Line 2 closes it\n3. Line 3 is raw HTML outside the fence\n4. Line 4 opens a new fence\n\n## Impact\n\nApplications that treat `JustHTML(..., sanitize=True).to_markdown()` output as safe for direct rendering in Markdown contexts may be exposed to XSS, depending on the downstream Markdown renderer's raw-HTML handling.\n\n## Root Cause\n\nThe `
` Markdown serializer uses a fixed fence instead of selecting a delimiter longer than the longest backtick run in the content.\n\n## Fix\n\nWhen serializing `
` content to Markdown, choose a fence length longer than any backtick run present in the code block content, with a minimum length of 3.","references":[{"reference_url":"https://github.com/EmilStenstrom/justhtml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/EmilStenstrom/justhtml"},{"reference_url":"https://github.com/EmilStenstrom/justhtml/commit/f35f8f723c713bd8f912d86e9ec6881275ff5af9","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/EmilStenstrom/justhtml/commit/f35f8f723c713bd8f912d86e9ec6881275ff5af9"},{"reference_url":"https://github.com/EmilStenstrom/justhtml/releases/tag/v1.13.0","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/EmilStenstrom/justhtml/releases/tag/v1.13.0"},{"reference_url":"https://github.com/EmilStenstrom/justhtml/security/advisories/GHSA-5vp3-3cg6-2rq3","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/EmilStenstrom/justhtml/security/advisories/GHSA-5vp3-3cg6-2rq3"},{"reference_url":"https://github.com/advisories/GHSA-5vp3-3cg6-2rq3","reference_id":"GHSA-5vp3-3cg6-2rq3","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-5vp3-3cg6-2rq3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/374611?format=json","purl":"pkg:pypi/justhtml@1.13.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-kg61-21wu-kyfd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/justhtml@1.13.0"}],"aliases":["GHSA-5vp3-3cg6-2rq3"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-72kf-cb91-dkcy"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/360127?format=json","vulnerability_id":"VCID-8k68-7fmz-duhz","summary":"JustHTML Affected by Mutation XSS via Literal Text Serialization in Raw Text Elements (style/script)\n## Summary\n\nSanitized DOM trees can be unsafe to serialize when a custom policy allows raw-text elements such as `