Owasp · Owasp Antisamy · CVE-2016-10006
**Name of the Vulnerable Software and Affected Versions**
OWASP AntiSamy versions prior to 1.5.5
**Description**
The issue allows an attacker to bypass library protections by submitting a specially crafted input, a tag that supports style with active content, which could supply executable code. This results in a cross-site scripting (XSS) impact.
**Recommendations**
For versions prior to 1.5.5, update to version 1.5.5 or later to resolve the issue.