Опубликовано: 27 мар. 2018
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.1
Описание
In the Loofah gem through 2.2.0 for Ruby, non-whitelisted HTML attributes may occur in sanitized output by republishing a crafted HTML fragment.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 2.2.1-1 |
| cosmic | ignored | end of life |
| devel | not-affected | 2.2.1-1 |
| disco | not-affected | 2.2.1-1 |
| esm-apps/bionic | not-affected | 2.2.1-1 |
| esm-apps/xenial | not-affected | 2.0.3-2+deb9u1 |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE |
Показывать по
10
EPSS
Процентиль: 73%
0.0076
Низкий
4.3 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.1
redhat
почти 8 лет назад
In the Loofah gem through 2.2.0 for Ruby, non-whitelisted HTML attributes may occur in sanitized output by republishing a crafted HTML fragment.
CVSS3: 6.1
nvd
почти 8 лет назад
In the Loofah gem through 2.2.0 for Ruby, non-whitelisted HTML attributes may occur in sanitized output by republishing a crafted HTML fragment.
CVSS3: 6.1
debian
почти 8 лет назад
In the Loofah gem through 2.2.0 for Ruby, non-whitelisted HTML attribu ...
EPSS
Процентиль: 73%
0.0076
Низкий
4.3 Medium
CVSS2
6.1 Medium
CVSS3