CVE-2022-23515 Loofah XSS vulnerability patched in v2.19.
Reporter | Title | Published | Views | Family All 31 |
---|---|---|---|---|
![]() | Internet Bug Bounty: Rails ActionView sanitize helper bypass leading to XSS using SVG tag. | 14 Dec 202220:50 | – | hackerone |
![]() | Ruby on Rails: ActionView sanitize helper bypass leading to XSS using SVG tag. | 7 Sep 202221:38 | – | hackerone |
![]() | Cross site scripting | 14 Dec 202214:15 | – | prion |
![]() | CVE-2022-23515 | 14 Dec 202200:00 | – | ubuntucve |
![]() | Cross-Site Scripting (XSS) | 14 Dec 202204:47 | – | veracode |
![]() | CVE-2022-23515 | 14 Dec 202214:15 | – | osv |
![]() | Improper neutralization of data URIs may allow XSS in Loofah | 13 Dec 202217:39 | – | osv |
![]() | ruby-loofah - security update | 13 Sep 202300:00 | – | osv |
![]() | ruby3.1-rubygem-loofah-2.19.1-1.1 on GA media | 15 Jun 202400:00 | – | osv |
![]() | ruby-loofah - security update | 28 Sep 202400:00 | – | osv |
[
{
"vendor": "flavorjones",
"product": "loofah",
"versions": [
{
"version": ">= 2.1.0, < 2.19.1",
"status": "affected"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo