Skip to content

Commit

Permalink
https://github.com/flavorjones/loofah/issues/144
Browse files Browse the repository at this point in the history
  • Loading branch information
ghiculescu authored Mar 19, 2018
1 parent 3f5830b commit f00c65c
Showing 1 changed file with 12 additions and 0 deletions.
12 changes: 12 additions & 0 deletions gems/loofah/CVE-2018-8048.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
---
gem: loofah
osvdb: 2018-8048
url: https://github.com/flavorjones/loofah/issues/144
title: Loofah XSS Vulnerability
date: 2018-03-16

description: |
Loofah allows non-whitelisted attributes to be present in sanitized output when input with specially-crafted HTML fragments.
patched_versions:
- ">= 2.2.1"

0 comments on commit f00c65c

Please sign in to comment.