CVE-2018-16468

Published 22 days ago
Category: Cross-Site Scripting
Severity: Severe

Vulnerability in loofah

In the Loofah gem, through v2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

CVSS Metrics
Access Vector Access Complexity Authentication Confidentiality Impact Integrity Impact Availability Impact
n/a n/a n/a n/a n/a n/a
Patched Versions

>= 2.2.3

Unaffected Versions

n/a

References

n/a