logo
DATABASE RESOURCES PRICING ABOUT US

Moderate severity vulnerability that affects loofah

Description

In the Loofah gem for Ruby, through version 2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished. Users are advised to upgrade to version 2.2.3. See https://github.com/flavorjones/loofah/issues/154 for more details.


Affected Software


CPE Name Name Version
loofah 2.2.3

Related