Known vulnerabilities in Cure53 DOMPurify 2.2.1

Vendor: Cure53

Website: https://cure53.de/

Total Security Bulletins: 5

Security bulletins (5)

Secuity bulletin	Severity	Status	Published
SB20250820123: Path traversal in cure53 DOMPurify	High	Patched	20.08.2025
SB2024103154: Prototype polution in DOMPurify	Medium	Patched	31.10.2024
SB20241022382: DOM-based XSS in DOMPurify	Medium	Patched	22.10.2024
SB2024092751: Prototype polution in DOMPurify	Medium	Patched	27.09.2024
SB2020120724: Cross-site scripting in DOMPurify	Low	Patched	07.12.2020