Lucene search

UBUNTU-CVE-2024-53989

🗓️ 02 Dec 2024 21:00:15Reported by GoogleType

osv🔗 osv.dev👁 2 Views

Rails HTML sanitizer possible XSS vulnerability fixed in version 1.6.

Reporter	Title	Published	Views	Family All 12
NVD	CVE-2024-53989	2 Dec 202421:15	–	nvd
Github Security Blog	rails-html-sanitizer has XSS vulnerability with certain configurations	2 Dec 202422:18	–	github
OSV	rails-html-sanitizer has XSS vulnerability with certain configurations	2 Dec 202422:18	–	osv
OSV	CVE-2024-53989	2 Dec 202421:15	–	osv
Cvelist	CVE-2024-53989 Possible XSS vulnerability with certain configurations of rails-html-sanitizer 1.6.0	2 Dec 202421:07	–	cvelist
UbuntuCve	CVE-2024-53989	2 Dec 202400:00	–	ubuntucve
Debian CVE	CVE-2024-53989	2 Dec 202421:15	–	debiancve
RedhatCVE	CVE-2024-53989	2 Dec 202423:21	–	redhatcve
Vulnrichment	CVE-2024-53989 Possible XSS vulnerability with certain configurations of rails-html-sanitizer 1.6.0	2 Dec 202421:07	–	vulnrichment
RubySec	rails-html-sanitizer has XSS vulnerability with certain configurations	1 Dec 202421:00	–	rubygems

Osv

Node

ubuntu\pro\Match16.04\ltsruby\-rails\-html\-sanitizer1.0.2-1

ubuntu\pro\Match16.04\ltsruby\-rails\-html\-sanitizer1.0.3-1

ubuntu\pro\Match16.04\ltsruby\-rails\-html\-sanitizer1.0.3-2

ubuntu\pro\Match18.04\ltsruby\-rails\-html\-sanitizer1.0.3-2

ubuntu\pro\Match18.04\ltsruby\-rails\-html\-sanitizer1.0.4-1

ubuntu\20.04\Matchltsruby\-rails\-html\-sanitizer1.0.4-1

ubuntu\20.04\Matchltsruby\-rails\-html\-sanitizer1.3.0-1

ubuntu\22.04\Matchltsruby\-rails\-html\-sanitizer1.3.0-2

ubuntu\22.04\Matchltsruby\-rails\-html\-sanitizer1.4.2-1

ubuntu\22.04\Matchltsruby\-rails\-html\-sanitizer1.4.2-2

ubuntu\24.10Matchruby\-rails\-html\-sanitizer1.4.4-1

ubuntu\24.04\Matchltsruby\-rails\-html\-sanitizer1.4.4-1

Source	Link
ubuntu	www.ubuntu.com/security/CVE-2024-53989
cve	www.cve.org/CVERecord
github	www.github.com/rails/rails-html-sanitizer/commit/16251735e36ebdc302e2f90f2a39cad56879414f
github	www.github.com/rails/rails-html-sanitizer/security/advisories/GHSA-rxv5-gxqc-xx8g

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Dec 2024 21:15Current

5.7Medium risk

Vulners AI Score5.7

CVSS42.3

SSVC