Sanitize Gem for Ruby: Whitelisted HTML Element Attribute Vulnerability

CVE-2018-3740 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

A specially crafted HTML fragment can cause Sanitize gem for Ruby to allow non-whitelisted attributes to be used on a whitelisted HTML element.

Learn more about our Web Application Penetration Testing UK.