CVE-2018-8048

2018-03-27T17:29:00
ID CVE-2018-8048
Type cve
Reporter cve@mitre.org
Modified 2019-11-22T09:15:00

Description

In the Loofah gem through 2.2.0 for Ruby, non-whitelisted HTML attributes may occur in sanitized output by republishing a crafted HTML fragment.