Cross-site scripting (XSS) vulnerability in the RedCloth library 4.2.9 for Ruby and earlier allows remote attackers to inject arbitrary web script or HTML via a javascript: URI.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | ruby-redcloth | < 4.2.9-4 | ruby-redcloth_4.2.9-4_all.deb |
Debian | 11 | all | ruby-redcloth | < 4.2.9-4 | ruby-redcloth_4.2.9-4_all.deb |
Debian | 10 | all | ruby-redcloth | < 4.2.9-4 | ruby-redcloth_4.2.9-4_all.deb |
Debian | 999 | all | ruby-redcloth | < 4.2.9-4 | ruby-redcloth_4.2.9-4_all.deb |
Debian | 13 | all | ruby-redcloth | < 4.2.9-4 | ruby-redcloth_4.2.9-4_all.deb |