Lucene search

K

Actionview Security Vulnerabilities

cve
cve

CVE-2020-15169

In Action View before versions 5.2.4.4 and 6.0.3.3 there is a potential Cross-Site Scripting (XSS) vulnerability in Action View's translation helpers. Views that allow the user to control the default (not found) value of the t and translate helpers could be susceptible to XSS attacks. When an...

6.1CVSS

5.8AI Score

0.023EPSS

2020-09-11 04:15 PM
153
cve
cve

CVE-2020-5267

In ActionView before versions 6.0.2.2 and 5.2.4.2, there is a possible XSS vulnerability in ActionView's JavaScript literal escape helpers. Views that use the j or escape_javascript methods may be susceptible to XSS attacks. The issue is fixed in versions 6.0.2.2 and...

4.8CVSS

5.2AI Score

0.001EPSS

2020-03-19 06:15 PM
187