exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2022-23515

почти 3 года назад

Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri. Loofah >= 2.1.0, < 2.19.1 is vulnerable to cross-site scripting via the image/svg+xml media type in data URIs. This issue is patched in version 2.19.1.

CVSS3: 6.1

EPSS: Низкий

CVE-2022-23515

почти 3 года назад

Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri. Loofah >= 2.1.0, < 2.19.1 is vulnerable to cross-site scripting via the image/svg+xml media type in data URIs. This issue is patched in version 2.19.1.

CVSS3: 6.1

EPSS: Низкий

CVE-2022-23515

почти 3 года назад

Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri. Loofah >= 2.1.0, < 2.19.1 is vulnerable to cross-site scripting via the image/svg+xml media type in data URIs. This issue is patched in version 2.19.1.

CVSS3: 6.1

EPSS: Низкий

CVE-2022-23515

почти 3 года назад

Loofah is a general library for manipulating and transforming HTML/XML ...

CVSS3: 6.1

EPSS: Низкий

GHSA-228g-948r-83gx

почти 3 года назад

Improper neutralization of data URIs may allow XSS in Loofah

CVSS3: 6.1

EPSS: Низкий

SUSE-SU-2023:1657-1

больше 2 лет назад

Security update for rubygem-loofah

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-23515 Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri. Loofah >= 2.1.0, < 2.19.1 is vulnerable to cross-site scripting via the image/svg+xml media type in data URIs. This issue is patched in version 2.19.1.	CVSS3: 6.1	0% Низкий	почти 3 года назад
CVE-2022-23515 Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri. Loofah >= 2.1.0, < 2.19.1 is vulnerable to cross-site scripting via the image/svg+xml media type in data URIs. This issue is patched in version 2.19.1.	CVSS3: 6.1	0% Низкий	почти 3 года назад
CVE-2022-23515 Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri. Loofah >= 2.1.0, < 2.19.1 is vulnerable to cross-site scripting via the image/svg+xml media type in data URIs. This issue is patched in version 2.19.1.	CVSS3: 6.1	0% Низкий	почти 3 года назад
CVE-2022-23515 Loofah is a general library for manipulating and transforming HTML/XML ...	CVSS3: 6.1	0% Низкий	почти 3 года назад
GHSA-228g-948r-83gx Improper neutralization of data URIs may allow XSS in Loofah	CVSS3: 6.1	0% Низкий	почти 3 года назад
SUSE-SU-2023:1657-1 Security update for rubygem-loofah			больше 2 лет назад

Уязвимостей на страницу