5 matches found
EUVD-2017-0169
Malware in sbrugna...
rails-html-sanitizer Cross-site Scripting vulnerability
Cross-site scripting XSS vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes...
Cross site scripting
Cross-site scripting XSS vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes...
CVE-2015-7578
Cross-site scripting XSS vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes...
CVE-2015-7578
CVE-2015-7578 is a cross-site scripting (XSS) vulnerability in the rails-html-sanitizer gem, prior to version 1.0.3, used with Ruby on Rails 4.2.x and 5.x. The issue allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes due to inadequate sanitization. Exploitat...