Workflow

Bleach

Latest version: v6.1.0

The latest version of bleach with no known security vulnerabilities is 6.1.0. We recommend installing version 6.1.0.

The information on this page was curated by experts in our Cybersecurity Intelligence Team.

Latest release
v6.1.0 at Oct. 7, 2023
License
Apache-2.0 (Apache License 2.0)

Description

An easy safelist-based HTML-sanitizing tool.

Resources

Vulnerabilities (6)

See all vulnerabilities
CVE-2021-23980
Affected versions:

<3.3.0

Bleach 3.3.0 includes a fix for CVE-2021-23980: A mutation XSS…
CVE-2020-6817
Affected versions:

<=3.1.3

Bleach 3.1.4 includes a fix for CVE-2020-6817: bleach.clean be…
CVE-2020-6816
Affected versions:

<3.1.2

Bleach 3.1.2 includes a fix for CVE-2020-6816: Mutation XSS vi…
CVE-2020-6802
Affected versions:

<=3.1.0

Bleach 3.1.1 includes a fix for CVE-2020-6802: Mutation XSS in…
CVE-2018-7753
Affected versions:

>=2.1,<2.1.3

bleach 2.1.3 fixes a security issue. Attributes that have UR…
PVE-2021-34965
Affected versions:

<2.1

bleach 2.1 converts control characters (backspace particularly…

Versions (58)

See all versions

Has known vulnerabilities

  • 6.1.0
  • 6.0.0
  • 5.0.1
  • 5.0.0
  • 4.1.0
  • 4.0.0
  • 3.3.1
  • 3.3.0
  • 3.2.3
  • 3.2.2
  • 3.2.1
  • 3.2.0
  • 3.1.5
  • 3.1.4
  • 3.1.3
  • 3.1.2
  • 3.1.1
  • 3.1.0
  • 3.0.2
  • 3.0.1