📚 CVE-2015-7579 | Ruby on Rails 3.0/4.0 rails-html-sanitizer cross site scripting (BID-81804 / XFDB-110102)
💡 Newskategorie: Sicherheitslücken
🔗 Quelle: vuldb.com
A vulnerability, which was classified as problematic, has been found in Ruby on Rails 3.0/4.0. Affected by this issue is the function rails-html-sanitizer
. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2015-7579. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component. ...