Ruby-Lang: >> Rdoc >> 2.5.10 Security Vulnerabilities
darkfish.js in RDoc 2.3.0 through 3.12 and 4.x before 4.0.0.preview2.1, as used in Ruby, does not properly generate documents, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted URL.
CVSS Score
4.3
EPSS Score
0.021
Published
2013-03-01