Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

rubygems rails-html-sanitizer Security Advisories

Loading...
Moderate
GSA_kwCzR0hTQS1ycmZjLTdnOHAtOTlxOM4AAwSi
Possible XSS vulnerability with certain configurations of rails-html-sanitizer
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: 12 months ago
Moderate
GSA_kwCzR0hTQS05aDlnLTkzZ2MtNjIzaM4AAwSh
Possible XSS vulnerability with certain configurations of rails-html-sanitizer
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: 12 months ago
Moderate
GSA_kwCzR0hTQS1tY3ZmLTJxMm0teDcybc4AAwSg
Improper neutralization of data URIs may allow XSS in rails-html-sanitizer
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: 12 months ago
High
GSA_kwCzR0hTQS01eDc5LXc4MmYtZ3c4d84AAwSf
Inefficient Regular Expression Complexity in rails-html-sanitizer
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: 12 months ago
Moderate
GSA_kwCzR0hTQS1wZzh2LWc0eHEtaHd3Oc4AAs-c
Rails::Html::Sanitizer vulnerable to Cross-site Scripting
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3cGMtcTVxNy1xZzlo
Moderate severity vulnerability that affects rails-html-sanitizer
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: about 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1yaGotMmc0di0zOXF4
Moderate severity vulnerability that affects rails-html-sanitizer
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: about 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFjOGotbThqMy1yanE2
Moderate severity vulnerability that affects rails-html-sanitizer
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: about 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB4M3Itam05Zy1jOHc4
rails-html-sanitizer Cross-site Scripting vulnerability
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU5YzctNHhqMi1oZ3Z3
rails-html-sanitizer Cross-site Scripting vulnerability
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI5YzItY3IzOS1jOGc2
rails-html-sanitizer Cross-site Scripting vulnerability
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdocW0tcGd4ai0zN2dx
rails-html-sanitizer Cross-site Scripting vulnerability
Ecosystems: rubygems
Packages: rails-html-sanitizer
Source: GitHub Advisory Database
Published: about 6 years ago
Filter by Package
actionpack 63 nokogiri 40 rubygems-update 25 activerecord 24 rack 20 puppet 16 activesupport 15 publify_core 14 actionview 14 passenger 13 rails-html-sanitizer 12 fat_free_crm 11 jquery-rails 11 jquery 10 rails 10 puma 10 org.webjars.npm:jquery 9 org.webjars.npm:jquery-ui 8 jQuery.UI.Combined 8 jquery-ui-rails 8 jquery-ui 8 jQuery 8 org.jruby:jruby-stdlib 7 doorkeeper 7 camaleon_cms 6 ember-source 6 loofah 6 bundler 5 katello 5 spree 5 commonmarker 5 spree_auth_devise 5 mail 4 fluentd 4 devise 4 sanitize 4 safemode 4 sidekiq 4 rubyzip 4 decidim 4 sinatra 4 dragonfly 4 grpcio 3 webrick 3 grpc 3 io.grpc:grpc-protobuf 3 geminabox 3 private_address_check 3 carrierwave 3 rails_admin 3 gollum 3 rest-client 3 bootstrap 3 paperclip 3 git 3 chartkick 3 cgi 3 omniauth 3 sprockets 3 activestorage 3 openssl 3 ruby-saml 3 yajl-ruby 2 sup 2 redcarpet 2 kramdown 2 administrate 2 pageflow 2 qiita-markdown 2 echor 2 activemodel 2 net-ldap 2 pyarrow 2 red-arrow 2 rack-cors 2 jquery 2 rack-mini-profiler 2 uri 2 yard 2 VladTheEnterprising 2 mini_magick 2 json 2 pdfkit 2 omniauth-facebook 2 devise-two-factor 2 decidim-core 2 mapbox-rails 2 mapbox.js 2 pghero 2 google-protobuf 2 cocoapods-downloader 2 solidus_frontend 2 com.google.protobuf:protobuf-java 2 facter 2 bson 2 bootstrap 2 bootstrap-sass 2 field_test 2 avo 2 rdoc 2 spina 2 secure_headers 2 i18n 2 faye 2 httparty 2 archive-tar-minitar 2 user_agent_parser 2 logstash-core 2 twitter-bootstrap-rails 2 ruby-openid 2 web-console 2 git-fastclone 2 minitar 2 espeak-ruby 2 colorscore 2 json-jwt 2 ox 2 solidus_core 2 com.google.protobuf:protobuf-kotlin 2 mechanize 2 festivaltts4r 2 metasploit-framework 2 radiant 2 foreman_ansible 1 restforce 1 airbrake-ruby 1 encoded_id-rails 1 clockwork_web 1 railties 1 will_paginate 1 show_in_browser 1 com.google.protobuf:protobuf-kotlin-lite 1 com.google.protobuf:protobuf-javalite 1 curupira 1 text_helpers 1 opensearch-ruby 1 actionpack-page_caching 1 sentry-raven 1 sfpagent 1 openshift-origin-node 1 curl 1 rgpg 1 svg_optimizer 1 sounder 1 cremefraiche 1 fastreader 1 haml 1 codders-dataset 1 rubocop 1 gollum-lib 1 http 1 paratrooper-newrelic 1 grape 1 apollo_upload_server 1 sensu 1 sqlite3-ruby 1 sqlite3 1 omniauth-oauth2 1 fluentd-ui 1 keynote 1 kelredd-pruview 1 delayed_job_web 1 arr-pm 1 ruby-mysql 1 gyazo 1 paratrooper-pingdom 1 many_versioned_gem 1 jmespath 1 excon 1 octokit 1 marginalia 1 datagrid 1 uglifier 1 bolt 1 padrino-contrib 1 uap-core 1 bibtex-ruby 1 RedCloth 1 doorkeeper-openid_connect 1 karo 1 rack-ssl 1 geocoder 1 wicked 1 actionmailer 1 command_wrap 1 devise_token_auth 1 open-uri-cached 1 gtk2 1 ldoce 1 solidus_backend 1 active-support 1 multi_xml 1 gitlab-grit 1 omniauth-saml 1 activeresource 1 rmagick 1 diffy 1 personnummer 1 sorcery 1 websocket-extensions 1 shrine 1 spree_api 1 govuk_tech_docs 1 kredis 1 tzinfo 1 cairo 1 em-imap 1 pdf_info 1 elastic-apm 1 django 1 fog-dragonfly 1 goliath 1 narou 1 rexml 1 decidim-templates 1 geokit-rails 1 update_by_case 1 alchemy_cms 1 cap-strap 1 brbackup 1 sprout 1 faye-websocket 1 date 1 matestack-ui-core 1 netaddr 1 ruby-jss 1 kaminari 1 solidus_api 1 omniauth-auth0 1 iodine 1 github.com/github/hub 1 hub 1 better_errors 1 trestle-auth 1 solidus_auth_devise 1 rails_multisite 1 hiera 1 mcollective-client 1 time 1 mysql-binuuid-rails 1 kubeclient 1 bootstrap-wysihtml5-rails 1 message_bus 1 view_component 1 image_processing 1 octopoller 1 ciborg 1 gibbon 1 random_password_generator 1 trilogy 1 rbovirt 1 pysha3 1 blazer 1 pay 1 sha3 1 rswag 1 cron_parser 1 rake 1 oxidized-web 1 inline_svg 1 audited 1 newrelic_rpm 1 clearance 1 moped 1 active_attr 1 coming-soon 1 kitchen-terraform 1 asciidoctor-include-ext 1 tmpdir 1 csv-safe 1 simple_captcha2 1 cocaine 1 smart_proxy_dynflow 1 smalruby 1 kafo 1 xapian-core 1 omniauth-weibo-oauth2 1 thin 1 org.jruby:jruby-parent 1 point-cli 1 hammer_cli_foreman 1 ccsv 1 smalruby-editor 1 ldap_fluff 1 xaviershay-dm-rails 1 authlogic 1 kajam 1 kcapifony 1 lynx 1 lawn-login 1 karteek-docsplit 1 flash_tool 1 aescrypt 1 gon 1 dependabot-common 1 ftpd 1 tweetstream 1 jquery-ujs 1 openshift-origin-controller 1 omniauth-apple 1