ammonia
crates.io2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting ammoniapage 1 of 1
- CVE-2019-15542HIGHCVSS 7.5EG 7.5✓ Fixed in 2.1.02019-08-26
An issue was discovered in the ammonia crate before 2.1.0 for Rust. There is uncontrolled recursion during HTML DOM tree serialization.
- CVE-2021-38193MEDIUMCVSS 6.1EG 6.1✓ Fixed in 3.1.02021-08-08
An issue was discovered in the ammonia crate before 3.1.0 for Rust. XSS can occur because the parsing differences for HTML, SVG, and MathML are mishandled, a similar issue to CVE-2020-26870.
Check whether ammonia is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for ammonia CVEs against the assets you own.
Start Free Scan →