Shodan
Vulnerabilities
Vulnerable Software
Rubyonrails:  >> Rails  >> 4.2.6  Security Vulnerabilities
CVE-2015-7580
Cross-site scripting (XSS) vulnerability in lib/rails/html/scrubbers.rb in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via a crafted CDATA node.
CVSS Score
6.1
EPSS Score
0.004
Published
2016-02-16
CVE-2015-7578
Cross-site scripting (XSS) vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag attributes.
CVSS Score
6.1
EPSS Score
0.004
Published
2016-02-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved