Vulnerability Database

Published: Oct 30, 2018
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-16468" target="_blank" rel="noopener"> CVE-2018-16468
GHSA: <a href="https://github.com/advisories/GHSA-g4xq-jx4w-4cjv" target="_blank" rel="noopener"> GHSA-g4xq-jx4w-4cjv
Severity: Medium
Exploit:

296,747

Total vulnerabilities in the database

In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10:

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.