Rails::HTML::Sanitizer 1.6.0 has XSS vulnerability with certain configurations. A possible attack allows injection if HTML5 sanitization is enabled and "noscript" is explicitly allowed
Reporter | Title | Published | Views | Family All 11 |
---|---|---|---|---|
![]() | CVE-2024-53989 | 2 Dec 202400:00 | – | ubuntucve |
![]() | CVE-2024-53989 | 2 Dec 202421:15 | – | nvd |
![]() | CVE-2024-53989 | 2 Dec 202421:15 | – | osv |
![]() | UBUNTU-CVE-2024-53989 | 2 Dec 202421:15 | – | osv |
![]() | CVE-2024-53989 | 2 Dec 202421:15 | – | cve |
![]() | CVE-2024-53989 Possible XSS vulnerability with certain configurations of rails-html-sanitizer 1.6.0 | 2 Dec 202421:07 | – | cvelist |
![]() | rails-html-sanitizer has XSS vulnerability with certain configurations | 2 Dec 202422:18 | – | github |
![]() | CVE-2024-53989 | 2 Dec 202421:15 | – | debiancve |
![]() | CVE-2024-53989 | 2 Dec 202423:21 | – | redhatcve |
![]() | CVE-2024-53989 Possible XSS vulnerability with certain configurations of rails-html-sanitizer 1.6.0 | 2 Dec 202421:07 | – | vulnrichment |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo