Vulnerability CVE-2020-5267

Vulnerability CVE-2020-5267

Published: 2020-03-19

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
3.5/10	2.9/10	6.8/10

Affected software
Rubyonrails -> Actionview
Debian -> Debian linux

http://www.openwall.com/lists/oss-security/2020/03/19/1

https://github.com/rails/rails/commit/033a738817abd6e446e1b320cb7d1a5c15224e9a

https://github.com/rails/rails/security/advisories/GHSA-65cv-r6x7-79hv

https://lists.debian.org/debian-lts-announce/2020/03/msg00022.html