ruby-redcloth security update(DSA-3168-1) ruby-redcloth_4.2.9-2+deb7u2_i386.deb
Risk Information
Base Score
8.6
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
No records foundCVE Information
Patch Details
No records found
References
http://co3k.org/blog/redcloth-unfixed-xss-en
http://jgarber.lighthouseapp.com/projects/13054-redcloth/tickets/243-xss
http://seclists.org/fulldisclosure/2014/Dec/50
http://www.debian.org/security/2015/dsa-3168
https://gist.github.com/co3k/75b3cb416c342aa1414c