Ruby-lang : Security Vulnerabilities, CVEs, Published In 2013 (XSS)
darkfish.js in RDoc 2.3.0 through 3.12 and 4.x before 4.0.0.preview2.1, as used in Ruby, does not properly generate documents, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted URL.
Max CVSS
4.3
EPSS Score
0.38%
Published
2013-03-01
Updated
2021-09-09
1 vulnerabilities found