Willkg

Name of the Vulnerable Software and Affected Versions: Bleach versions 2.1.x before 2.1.3 Description: An issue was discovered where attributes with URI values were not properly sanitized if the values contained character entities. This allowed for the construction of a URI value with a scheme that was not allowed to bypass sanitization. Recommendations: For versions 2.1.x before 2.1.3, update to version 2.1.3 to resolve the issue.