1 comment

[ 3.3 ms ] story [ 16.9 ms ] thread
Applications that use jsoup to parse user-supplied HTML or XML inputs may be vulnerable to DoS attacks. Fuzz tests conducted with the JVM fuzzer "Jazzer", through OSS-Fuzz, uncovered 8 critical bugs and 11 further vulnerabilities.