loofah project

Top products

The 7 most recently published vulnerabilities affecting loofah project.

• CVE-2022-23518Improper neutralization of data URIs allows XSS in rails-html-sanitizer6.1Dec 14, 2022
• CVE-2022-23516Uncontrolled Recursion in Loofah7.5Dec 14, 2022
• CVE-2022-23515Improper neutralization of data URIs may allow XSS in Loofah6.1Dec 14, 2022
• CVE-2022-23514Inefficient Regular Expression Complexity in Loofah7.5Dec 14, 2022
• CVE-2019-15587In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.5.4Oct 22, 2019
• CVE-2018-16468In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.5.4Oct 30, 2018
• CVE-2018-8048In the Loofah gem through 2.2.0 for Ruby, non-whitelisted HTML attributes may occur in sanitized output by republishing a crafted HTML fragment.6.1Mar 27, 2018