Several of our projects deal with questions on the security of software and consequently our research uncovers vulnerabilites, such as the ones listed below:
CVE-2022-36020: Typo3 HTML Sanitizer is vulnerable to XSS payloads enclosed in particular HTML comment combinations.
CVE-2022-23499: Typo3 HTML Sanitizer can be bypassed by embedding the payload in CDATA or by mutating out of RAWTEXT elements.
CVE-2023-23627: Ruby sanitize is affected by an mXSS vulnerability due to incorrectly parsing the noscript tag.
CVE-2023-38500: Typo3 HTML Sanitizer is affected by an mXSS vulnerability due to incorrectly parsing the noscript tag.
CVE-2023-43643: AntiSamy is affected by an mXSS vulnerability due to incorrectly parsing the noscript tag.
CVE-2023-51652: OWASP.AntiSamy is affected by an mXSS vulnerability due to incorrectly parsing the noscript tag.
CVE-2024-9392: Firefox is affected by a Site Isolation bypass vulnerability. A compromised renderer process could load documents from arbitrary sites.
CVE-2024-23635: AntiSamy is vulnerable to XSS payloads enclosed in malformed HTML comments.
2024: Student Ziad Alhajjar got rewarded a bug bounty from Google. He discovered a vulnerability in Android during his master thesis work. He bypassed the Android permission system, leaking privacy-sensitive data.
Furthermore, we have uncovered and reported security vulnerabilities in numerous open source projects, e.g., DOMPurify or Hotcrp.