Description

The sanitize_css method in lib/action_controller/vendor/html-scanner/html/sanitizer.rb in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before 3.1.12, and 3.2.x before 3.2.13 does not properly handle \n (newline) characters, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via crafted Cascading Style Sheets (CSS) token sequences.

Remediation

References

CVE-2013-1855

Related Vulnerabilities

WordPress Plugin Seriously Simple Podcasting Cross-Site Request Forgery (2.16.0)

WordPress Plugin Free Live Chat Support Cross-Site Request Forgery (1.0.11)

Omeka Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-3980)

Squid Incorrect Conversion between Numeric Types Vulnerability (CVE-2023-46848)

WordPress Plugin AIT Themes-CSV Import/Export Arbitrary File Upload (3.0.3)

Severity

Medium

Classification

CVE-2013-1855 CWE-707

Tags

Missing Update Known Vulnerabilities