Vulnerabilities > Rails Admin Project > Rails Admin > 1.4.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-12 | CVE-2020-36190 | Cross-site Scripting vulnerability in Rails Admin Project Rails Admin RailsAdmin (aka rails_admin) before 1.4.3 and 2.x before 2.0.2 allows XSS via nested forms. | 4.3 |