https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 06 May 2026 04:28:42 +0000 https://vulnerability.circl.lu/sighting/6da370cb-45fb-46f2-abaa-e0cd01af1297/export {"uuid": "6da370cb-45fb-46f2-abaa-e0cd01af1297", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53986", "type": "seen", "source": "https://t.me/cvedetector/11828", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-53986 - rails-html-sanitizer Math XSS\", \n \"Content\": \"CVE ID : CVE-2024-53986 \nPublished : Dec. 2, 2024, 10:15 p.m. | 30\u00a0minutes ago \nDescription : rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. There is a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0. A possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer may allow an attacker to inject content if HTML5 sanitization is enabled and the application developer has overridden the sanitizer's allowed tags where the \"math\" and \"style\" elements are both explicitly allowed. This vulnerability is fixed in 1.6.1. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-02T23:46:38.000000Z"} {"uuid": "6da370cb-45fb-46f2-abaa-e0cd01af1297", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53986", "type": "seen", "source": "https://t.me/cvedetector/11828", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-53986 - rails-html-sanitizer Math XSS\", \n \"Content\": \"CVE ID : CVE-2024-53986 \nPublished : Dec. 2, 2024, 10:15 p.m. | 30\u00a0minutes ago \nDescription : rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. There is a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0. A possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer may allow an attacker to inject content if HTML5 sanitization is enabled and the application developer has overridden the sanitizer's allowed tags where the \"math\" and \"style\" elements are both explicitly allowed. This vulnerability is fixed in 1.6.1. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-02T23:46:38.000000Z"} https://vulnerability.circl.lu/sighting/6da370cb-45fb-46f2-abaa-e0cd01af1297/export Mon, 02 Dec 2024 23:46:38 +0000