Sha256: 0edb348f45afa3c0242a848ead91b2b8820dbaa52b886a4a13d6af08d9572902
Contents?: true
Size: 549 Bytes
Versions: 1
Compression:
Stored size: 549 Bytes
Contents
--- gem: matestack-ui-core cve: 2020-5241 date: 2020-02-10 url: https://github.com/matestack/matestack-ui-core/security/advisories/GHSA-3jqw-vv45-mjhh title: | matestack-ui-core is vulnerable to XSS/Script injection description: | matestack-ui-core does not excape strings by default and does not cover this in the docs. matestack-ui-core should escape strings by default in order to prevent XSS/Script injection vulnerability. v0.7.4 fixes that by escaping strings by default. cvss_v2: 10.0 cvss_v3: 9.8 patched_versions: - ">= 0.7.4"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/matestack-ui-core/CVE-2020-5241.yml |