H1-1530898 — Vulnetix

H1-1530898 PUBLISHED CVSS 6.5 MEDIUM

Rails::Html::SafeListSanitizer vulnerable to xss attack in an environment that allows the style tag

Risk Scores

CVSS 3.1

6.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Exploit Intelligence

Rails::Html::SafeListSanitizer vulnerable to xss attack in an environment that allows the style tag (hackerone)
Rails::Html::SafeListSanitizer vulnerable to xss attack in an environment that allows the style tag (hackerone)

Timeline

Jun 14, 2022 CVE Published
Jun 14, 2022 PoC Published

References

Rails::Html::SafeListSanitizer vulnerable to xss attack in an environment that allows the style tag advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›