Cross-Site Scripting in Ruby's rails-html-sanitizer by Ruby on Rails
CVE-2018-3741

6.1MEDIUM

Key Information:

Vendor: Rails
Status: Rails-html-sanitizer
Vendor: CVE Published:; 30 March 2018

What is CVE-2018-3741?

The rails-html-sanitizer gem, used in Ruby applications, is vulnerable to Cross-Site Scripting (XSS) attacks in all versions prior to 1.0.4. This vulnerability occurs due to the inclusion of non-whitelisted attributes in the sanitized output when processing carefully crafted HTML snippets. Attackers can exploit this flaw to inject malicious scripts, potentially compromising the security of web applications that rely heavily on the sanitization provided by this gem. Developers are strongly encouraged to upgrade to version 1.0.4 or later to mitigate this risk, or to implement provided workarounds immediately.

Affected Version(s)

rails-html-sanitizer <= 1.0.3

References

https://github.com/rails/rails-html-sanitizer/commit/f3ba...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 30, 2018
Vulnerability Reserved
Dec 28, 2017