Vulnerabilities > Loofah Project > Loofah > 2.3.1

DATE CVE VULNERABILITY TITLE RISK
2022-12-14 CVE-2022-23518 Cross-site Scripting vulnerability in multiple products
rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications.
network
low complexity
rubyonrails debian loofah-project CWE-79
6.1
6.1
2022-12-14 CVE-2022-23514 Unspecified vulnerability in Loofah Project Loofah
Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri.
network
low complexity
loofah-project
7.5
7.5
2022-12-14 CVE-2022-23515 Cross-site Scripting vulnerability in multiple products
Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri.
network
low complexity
loofah-project debian CWE-79
6.1
6.1
2022-12-14 CVE-2022-23516 Uncontrolled Recursion vulnerability in Loofah Project Loofah
Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri.
network
low complexity
loofah-project CWE-674
7.5
7.5