erubis icon indicating copy to clipboard operation
erubis copied to clipboard

Published 20 hours ago verified publisher icon kwatch

Cross-site Scripting (XSS)

Open aalejandromr opened this issue 1 year ago • 0 comments

Snyk is reporting a Medium security vulnerability due to un-escaped single quotes. https://security.snyk.io/vuln/SNYK-RUBY-ERUBIS-20482

I do see some PRs open addressing this issue but have not had any attention #19 and #18

Any updates or help you need to get this issue resolved and to the finish line?

Thanks.

aalejandromr avatar Mar 17 '23 14:03 aalejandromr