0.002 Low
EPSS
Percentile
59.1%
In the Loofah gem through 2.2.0 for Ruby, non-whitelisted HTML attributes may occur in sanitized output by republishing a crafted HTML fragment.
bugzilla.redhat.com/show_bug.cgi?id=1559071