Carefully crafted text can bypass the sanitization provided in the sanitize_css
method in Action Pack.
CPE | Name | Operator | Version |
---|---|---|---|
gem/actionpack | lt | 2.3.18 | |
gem/actionpack | ge | 2.4.0 | |
gem/actionpack | lt | 3.1.12 | |
gem/actionpack | ge | 3.2.0 | |
gem/actionpack | lt | 3.2.13 |