CVE-2019-15587

Published 28 days ago
Category: Code Injection
Source: GitHub
Severity: Severe

Vulnerability in loofah

In the Loofah gem, through v2.3.0, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

CVSS Metrics
Access Vector Access Complexity Authentication Confidentiality Impact Integrity Impact Availability Impact
n/a n/a n/a n/a n/a n/a
Patched Versions

>= 2.3.1

Unaffected Versions

n/a

References

n/a