CVE-2025-26791

Vulnerability Description

DOMPurify before 3.2.4 has an incorrect template literal regular expression, sometimes leading to mutation cross-site scripting (mXSS).

Published Date

February 14, 2025

Last Modified

October 07, 2025

Source

NVD