Rubyonrails Actionview 6.0.0

CPE Details

Rubyonrails Actionview 6.0.0
6.0.0
2020-04-01
09h34 +00:00
2020-04-01
09h34 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:rubyonrails:actionview:6.0.0:*:*:*:*:*:*:*

Informations

Vendor

rubyonrails

Product

actionview

Version

6.0.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-5267 2020-03-19 16h30 +00:00 In ActionView before versions 6.0.2.2 and 5.2.4.2, there is a possible XSS vulnerability in ActionView's JavaScript literal escape helpers. Views that use the `j` or `escape_javascript` methods may be susceptible to XSS attacks. The issue is fixed in versions 6.0.2.2 and 5.2.4.2.
4.8
Medium