In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
loofah project loofah |
||
debian debian linux 9.0 |