pkg:gem/rails-html-sanitizer
Type
gem
Name
rails-html-sanitizer
Known advisories, vulnerabilities and fixes for rails-html-sanitizer package.
High
1
Medium
8
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 1.0.3 |
CVE-2015-7578
|
RUBYSEC:RAILS-HTML-SANITIZER-2015-7578 | Possible XSS vulnerability in rails-html-sanitizer | medium |
2016-01-25T00:00:00
(8 years ago) |
|
Fixed | >= 1.0.3 |
CVE-2015-7578
|
RUBYSEC:RAILS-HTML-SANITIZER-2015-7578 | Possible XSS vulnerability in rails-html-sanitizer | medium |
2016-01-25T00:00:00
(8 years ago) |
|
Affected | < 1.0.3 |
CVE-2015-7579
|
RUBYSEC:RAILS-HTML-SANITIZER-2015-7579 | XSS vulnerability in rails-html-sanitizer | medium |
2016-01-25T00:00:00
(8 years ago) |
|
Fixed | >= 1.0.3 |
CVE-2015-7579
|
RUBYSEC:RAILS-HTML-SANITIZER-2015-7579 | XSS vulnerability in rails-html-sanitizer | medium |
2016-01-25T00:00:00
(8 years ago) |
|
Unaffected |
CVE-2015-7579
|
RUBYSEC:RAILS-HTML-SANITIZER-2015-7579 | XSS vulnerability in rails-html-sanitizer | medium |
2016-01-25T00:00:00
(8 years ago) |
||
Affected | < 1.0.3 |
CVE-2015-7580
|
RUBYSEC:RAILS-HTML-SANITIZER-2015-7580 | Possible XSS vulnerability in rails-html-sanitizer | medium |
2016-01-25T00:00:00
(8 years ago) |
|
Fixed | >= 1.0.3 |
CVE-2015-7580
|
RUBYSEC:RAILS-HTML-SANITIZER-2015-7580 | Possible XSS vulnerability in rails-html-sanitizer | medium |
2016-01-25T00:00:00
(8 years ago) |
|
Affected | < 1.0.4 |
CVE-2018-3741
CVE-2018-8048 |
RUBYSEC:RAILS-HTML-SANITIZER-2018-3741 | XSS vulnerability in rails-html-sanitizer | medium |
2018-03-22T00:00:00
(6 years ago) |
|
Fixed | >= 1.0.4 |
CVE-2018-3741
CVE-2018-8048 |
RUBYSEC:RAILS-HTML-SANITIZER-2018-3741 | XSS vulnerability in rails-html-sanitizer | medium |
2018-03-22T00:00:00
(6 years ago) |
|
Affected | < 1.4.4 |
CVE-2022-23517
|
RUBYSEC:RAILS-HTML-SANITIZER-2022-23517 | Inefficient Regular Expression Complexity in rails-html-sanitizer | high |
2022-12-13T00:00:00
(21 months ago) |
|
Fixed | >= 1.4.4 |
CVE-2022-23517
|
RUBYSEC:RAILS-HTML-SANITIZER-2022-23517 | Inefficient Regular Expression Complexity in rails-html-sanitizer | high |
2022-12-13T00:00:00
(21 months ago) |
|
Affected | < 1.4.4 = 1.0.3 |
CVE-2022-23518
|
RUBYSEC:RAILS-HTML-SANITIZER-2022-23518 | Improper neutralization of data URIs may allow XSS in rails-html-sanitizer | medium |
2022-12-13T00:00:00
(21 months ago) |
|
Fixed | >= 1.4.4 |
CVE-2022-23518
|
RUBYSEC:RAILS-HTML-SANITIZER-2022-23518 | Improper neutralization of data URIs may allow XSS in rails-html-sanitizer | medium |
2022-12-13T00:00:00
(21 months ago) |
|
Unaffected | < 1.0.3 |
CVE-2022-23518
|
RUBYSEC:RAILS-HTML-SANITIZER-2022-23518 | Improper neutralization of data URIs may allow XSS in rails-html-sanitizer | medium |
2022-12-13T00:00:00
(21 months ago) |
|
Affected | < 1.4.4 |
CVE-2022-23519
|
RUBYSEC:RAILS-HTML-SANITIZER-2022-23519 | Possible XSS vulnerability with certain configurations of rails-html-sanitizer | medium |
2022-12-13T00:00:00
(21 months ago) |
|
Fixed | >= 1.4.4 |
CVE-2022-23519
|
RUBYSEC:RAILS-HTML-SANITIZER-2022-23519 | Possible XSS vulnerability with certain configurations of rails-html-sanitizer | medium |
2022-12-13T00:00:00
(21 months ago) |
|
Affected | < 1.4.4 |
CVE-2022-23520
CVE-2022-32209 |
RUBYSEC:RAILS-HTML-SANITIZER-2022-23520 | Possible XSS vulnerability with certain configurations of rails-html-sanitizer | medium |
2022-12-13T00:00:00
(21 months ago) |
|
Fixed | >= 1.4.4 |
CVE-2022-23520
CVE-2022-32209 |
RUBYSEC:RAILS-HTML-SANITIZER-2022-23520 | Possible XSS vulnerability with certain configurations of rails-html-sanitizer | medium |
2022-12-13T00:00:00
(21 months ago) |
|
Affected | < 1.4.3 |
CVE-2022-32209
|
RUBYSEC:RAILS-HTML-SANITIZER-2022-32209 | Possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer | medium |
2022-06-09T00:00:00
(2 years ago) |
|
Fixed | >= 1.4.3 |
CVE-2022-32209
|
RUBYSEC:RAILS-HTML-SANITIZER-2022-32209 | Possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer | medium |
2022-06-09T00:00:00
(2 years ago) |