Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2016:1146-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.95537EPSS
Exploits19References4
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.37 views

Fedora 22 : rubygem-rails-html-sanitizer-1.0.1-2.fc22 (2016-3a2606f993)

Security fix for CVE-2015-7578 CVE-2015-7579 CVE-2015-7580 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

6.1CVSS6.5AI score0.02587EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.25 views

Fedora 23 : rubygem-rails-html-sanitizer-1.0.3-1.fc23 (2016-59ce8b61dd)

Security fix for CVE-2015-7578 CVE-2015-7579 CVE-2015-7580 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

6.1CVSS6.5AI score0.02587EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2016/02/29 12:0 a.m.24 views

Fedora Update for rubygem-rails-html-sanitizer FEDORA-2016-59

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.5AI score0.02587EPSS
Exploits1References2
OSV
OSV
added 2016/02/16 2:59 a.m.3 views

DEBIAN-CVE-2015-7578

Cross-site scripting XSS vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes...

6.1CVSS6.1AI score0.02485EPSS
Exploits0References1
NVD
NVD
added 2016/02/16 2:59 a.m.16 views

CVE-2015-7578

Cross-site scripting XSS vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes...

6.1CVSS6AI score0.02485EPSS
Exploits0References9
OSV
OSV
added 2016/02/16 2:59 a.m.2 views

CVE-2015-7578

Cross-site scripting XSS vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes...

6.1CVSS6.1AI score
Exploits0References9
UbuntuCve
UbuntuCve
added 2016/02/16 2:59 a.m.20 views

CVE-2015-7578

Cross-site scripting XSS vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes...

6.1CVSS6.8AI score0.02485EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/02/16 2:0 a.m.28 views

CVE-2015-7578

Cross-site scripting XSS vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes...

5.5AI score0.02485EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2016/02/08 12:0 a.m.26 views

openSUSE Security Update : rubygem-rails-html-sanitizer (openSUSE-2016-148)

This update for rubygem-rails-html-sanitizer fixes the following issues : - CVE-2015-7579: XSS vulnerability in rails-html-sanitizer bsc963327 - CVE-2015-7578: XSS vulnerability via attributes bsc963326 - CVE-2015-7580: XSS via whitelist sanitizer bsc963328 %NASLMINLEVEL 70300 C Tenable Network...

6.1CVSS6.4AI score0.02587EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2016/02/08 12:0 a.m.25 views

openSUSE: Security Advisory for rubygem-rails-html-sanitizer (openSUSE-SU-2016:0356-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.4AI score0.02587EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2016/02/07 5:11 p.m.58 views

Security update for rubygem-rails-html-sanitizer (important)

This update for rubygem-rails-html-sanitizer fixes the following issues: - CVE-2015-7579: XSS vulnerability in rails-html-sanitizer bsc963327 - CVE-2015-7578: XSS vulnerability via attributes bsc963326 - CVE-2015-7580: XSS via whitelist sanitizer bsc963328...

4.3CVSS3AI score0.02587EPSS
Exploits1References3
RubySec
RubySec
added 2016/01/25 12:0 a.m.25 views

Possible XSS vulnerability in rails-html-sanitizer

There is a possible XSS vulnerability in rails-html-sanitizer. This vulnerability has been assigned the CVE identifier CVE-2015-7578. Versions Affected: All. Not affected: None. Fixed Versions: 1.0.3 Impact ------ There is a possible XSS vulnerability in rails-html-sanitizer. Certain attributes a...

6.1CVSS3.6AI score0.02485EPSS
Exploits0References1Affected Software1
Hacker One
Hacker One
added 2015/01/07 12:38 a.m.26 views

Ruby on Rails: Data-Tags and the New HTML Sanitizer Subverts CSRF protection

Possible XSS vulnerability in rails-html-sanitizer There is a possible XSS vulnerability in rails-html-sanitizer. This vulnerability has been assigned the CVE identifier CVE-2015-7578. Versions Affected: All. Not affected: None. Fixed Versions: 1.0.3 Impact ------ There is a possible XSS...

4.3CVSS5.8AI score0.02485EPSS
Exploits0
Rows per page
Query Builder