CVE-2011-1497

Опубликовано: 06 апр. 2011

Источник: redhat

CVSS3: 7.5

EPSS Низкий

Описание

A cross-site scripting vulnerability flaw was found in the auto_link function in Rails before version 3.0.6.

Затронутые пакеты

Платформа	Пакет	Состояние
CloudForms Management Engine 5	cfme-gemset	Not affected
Red Hat 3scale API Management Platform 2	rails	Not affected
Red Hat Satellite 6	tfm-ror52-rubygem-rails	Not affected
Red Hat Satellite 6	tfm-rubygem-rails	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-79

https://bugzilla.redhat.com/show_bug.cgi?id=2015262rubygem-actionpack: Cross-site scripting in auto_link function

EPSS

Процентиль: 55%

0.00328

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2011-1497

CVSS3: 6.1

ubuntu

около 4 лет назад

A cross-site scripting vulnerability flaw was found in the auto_link function in Rails before version 3.0.6.

CVE-2011-1497

CVSS3: 6.1

nvd

около 4 лет назад

A cross-site scripting vulnerability flaw was found in the auto_link function in Rails before version 3.0.6.

CVE-2011-1497

CVSS3: 6.1

debian

около 4 лет назад

A cross-site scripting vulnerability flaw was found in the auto_link f ...

GHSA-q58j-fmvf-9rq6

CVSS3: 6.1

github

больше 3 лет назад

Cross site scripting in actionpack Rubygem

EPSS

Процентиль: 55%

0.00328

Низкий

7.5 High

CVSS3