H1-1805899 — Vulnetix

H1-1805899 PUBLISHED

CVE-2022-23519: Rails::Html::SafeListSanitizer vulnerable to XSS when certain tags are allowed (math+style || svg+style)

Timeline

Jan 4, 2023 CVE Published
Jan 4, 2023 PoC Published

References

CVE-2022-23519: Rails::Html::SafeListSanitizer vulnerable to XSS when certain tags are allowed (math+style || svg+style) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›