6.7 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.1%
It was discovered that Loofah does not properly sanitize JavaScript in sanitized output. An attacker could possibly use this issue to perform XSS attacks. (CVE-2019-15587)
ubuntu.com/security/CVE-2019-15587
ubuntu.com/security/notices/USN-4498-1