logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-16468

Description

In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.


Affected Package


OS OS Version Package Name Package Version
Debian 12 ruby-loofah 2.19.0-1
Debian 11 ruby-loofah 2.7.0+dfsg-1
Debian 10 ruby-loofah 2.2.3-1+deb10u1
Debian 999 ruby-loofah 2.19.0-1

Related