RubyGems/rails-html-sanitizer — 14 CVEs

HIGH7.5CVE-2022-23517Inefficient Regular Expression Complexity in rails-html-sanitizer

from 0, < 1.4.4

MEDIUM6.1CVE-2022-23520Possible XSS vulnerability with certain configurations of rails-html-sanitizer

from 0, < 1.4.4

MEDIUM6.1CVE-2022-23519Possible XSS vulnerability with certain configurations of rails-html-sanitizer

from 0, < 1.4.4

MEDIUM6.1Improper neutralization of data URIs may allow XSS in rails-html-sanitizer

>= 1.0.3, < 1.4.4

MEDIUM6.1Rails::Html::Sanitizer vulnerable to Cross-site Scripting

from 0, < 1.4.3

MEDIUM6.1rails-html-sanitizer Cross-site Scripting vulnerability

from 0, < 1.0.4

MEDIUM6.1rails-html-sanitizer Cross-site Scripting vulnerability

from 0, < 1.0.3

MEDIUM6.1rails-html-sanitizer Cross-site Scripting vulnerability

from 0, < 1.0.3

MEDIUM6.1rails-html-sanitizer Cross-site Scripting vulnerability

from 0, < 1.0.3

—rails-html-sanitizer has XSS vulnerability with certain configurations

>= 1.6.0, < 1.6.1

—rails-html-sanitizer has XSS vulnerability with certain configurations

>= 1.6.0, < 1.6.1

—rails-html-sanitizer has XSS vulnerability with certain configurations

>= 1.6.0, < 1.6.1

—rails-html-sanitizer has XSS vulnerability with certain configurations

>= 1.6.0, < 1.6.1

—rails-html-sanitize has XSS vulnerability with certain configurations

>= 1.6.0, < 1.6.1

pkg:RubyGems/rails-html-sanitizer