CVE-2023-46035
The CVE-2023-46035 issue affects the Ruby gem svg_optimizer (Fnando) v0.2.6, where an external XML entity (XXE) vulnerability is possible when optimizing untrusted SVG content due to default XXE handling in the code (svg_optimizer.rb). This can allow a remote attacker to escalate privileges by ex...