Description

The sanitize_css method in lib/action_controller/vendor/html-scanner/html/sanitizer.rb in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before 3.1.12, and 3.2.x before 3.2.13 does not properly handle \n (newline) characters, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via crafted Cascading Style Sheets (CSS) token sequences.

Remediation

References

CVE-2013-1855

Related Vulnerabilities

WordPress Plugin Bold Page Builder PHP Object Injection (3.1.5)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-27898)

MySQL CVE-2023-22058 Vulnerability (CVE-2023-22058)

Moodle Other Vulnerability (CVE-2022-30597)

MySQL CVE-2018-2703 Vulnerability (CVE-2018-2703)

Severity

Medium

Classification

CVE-2013-1855 CWE-707

Tags

Missing Update Known Vulnerabilities