Description
Cross-site scripting (XSS) vulnerability in Ruby on Rails 2.x before 2.2.3, and 2.3.x before 2.3.4, allows remote attackers to inject arbitrary web script or HTML by placing malformed Unicode strings into a form helper.
Remediation
References
Related Vulnerabilities
MySQL CVE-2020-14888 Vulnerability (CVE-2020-14888)
MySQL CVE-2012-0490 Vulnerability (CVE-2012-0490)
WordPress Plugin WP BASE Booking of Appointments, Services and Events PHP Object Injection (3.5.0)
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-44040)
WordPress Plugin WordPress for Google Maps-WP MAPS Cross-Site Request Forgery (4.2.3)