0.003 Low
EPSS
Percentile
69.9%
The actionview module in ruby on rails is vulnerable to Cross-Site Scripting (XSS) attacks. This is due to a lack of escaping double quotes, allowing malicious users to execute arbitrary code.
access.redhat.com/security/updates/classification/#moderate
rhn.redhat.com/errata/RHSA-2016-1855.html