Sanitize Gem for Ruby: Whitelisted HTML Element Attribute Vulnerability
CVE-2018-3740 · MEDIUM Severity
AV:N/AC:L/AU:N/C:N/I:P/A:N
A specially crafted HTML fragment can cause Sanitize gem for Ruby to allow non-whitelisted attributes to be used on a whitelisted HTML element.
Learn more about our Web Application Penetration Testing UK.