Actionview
1 CVEs
product
Monthly
In ActionView before versions 6.0.2.2 and 5.2.4.2, there is a possible XSS vulnerability in ActionView's JavaScript literal escape helpers. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
XSS
Actionview
Debian Linux
Fedora
Leap
NVD
GitHub
CVSS 3.1
4.8
EPSS
1.5%
CVE-2020-5267
Ruby
EPSS 2%
CVSS 4.8
MEDIUM
POC
PATCH
This Month
In ActionView before versions 6.0.2.2 and 5.2.4.2, there is a possible XSS vulnerability in ActionView's JavaScript literal escape helpers. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
XSS
Actionview
Debian Linux
+2
NVD
GitHub