CVE-2022-23518 — Cross-site Scripting in Rails Html Sanitizers

CWE-79 — Cross-site Scripting6 documents5 sources

Severity

6.1MEDIUMNVD

EPSS

0.3%

top 49.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Loofah Project Loofah Rubyonrails Rails Html Sanitizers Rails Rails-html-sanitizer +2 more

Timeline

PublishedDec 14

Description

rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. Versions >= 1.0.3, = 2.1.0. This issue is patched in version 1.4.4.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages5 packages

▶RubyGemsrails/rails-html-sanitizer1.0.3 — 1.4.4

▶debiandebian/ruby-rails-html-sanitizer< ruby-rails-html-sanitizer 1.4.4-1 (bookworm)

▶NVDrubyonrails/rails_html_sanitizers1.0.3 — 1.4.4

▶CVEListV5rails/rails-html-sanitizer>= 1.0.3, < 1.4.4

▶NVDloofah_project/loofah2.1.0 — 2.19.1

Also affects: Debian Linux 10.0

🔴Vulnerability Details

OSV

CVE-2022-23518: rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications↗2022-12-14

▶

GHSA

Improper neutralization of data URIs may allow XSS in rails-html-sanitizer↗2022-12-13

▶

OSV

Improper neutralization of data URIs may allow XSS in rails-html-sanitizer↗2022-12-13

▶

📋Vendor Advisories

Red Hat

rubygem-rails-html-sanitizer: Improper neutralization of data URIs leading to Cross site scripting↗2022-12-13

▶

Debian

CVE-2022-23518: ruby-rails-html-sanitizer - rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails appli...↗2022

▶