Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-15587

Опубликовано: 22 окт. 2019
Источник: debian

Описание

In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
ruby-loofahfixed2.3.1+dfsg-1package

Примечания

  • https://github.com/flavorjones/loofah/issues/171

Связанные уязвимости

ubuntu логотип

CVE-2019-15587

CVSS3: 5.4
ubuntu
больше 6 лет назад

In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

redhat логотип

CVE-2019-15587

CVSS3: 4.6
redhat
больше 6 лет назад

In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

nvd логотип

CVE-2019-15587

CVSS3: 5.4
nvd
больше 6 лет назад

In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

suse-cvrf логотип

SUSE-SU-2022:3868-1

suse-cvrf
больше 3 лет назад

Security update for rubygem-loofah

github логотип

GHSA-c3gv-9cxf-6f57

CVSS3: 5.4
github
больше 6 лет назад

Loofah Allows Cross-site Scripting