CVE-2018-3740

2018-03-30T19:29:00
ID CVE-2018-3740
Type cve
Reporter cve@mitre.org
Modified 2018-12-28T16:29:00

Description

A specially crafted HTML fragment can cause Sanitize gem for Ruby to allow non-whitelisted attributes to be used on a whitelisted HTML element.