matestack-ui-core 0.7.2
1 security vulnerability
found in version
0.7.2
matestack-ui-core is vulnerable to XSS/Script injection
critical severity CVE-2020-5241
critical severity
CVE-2020-5241
Patched versions:
>= 0.7.4
matestack-ui-core does not excape strings by default and does not cover this in the docs. matestack-ui-core should escape strings by default in order to prevent XSS/Script injection vulnerability. v0.7.4 fixes that by escaping strings by default.
No officially reported memory leakage issues detected.
This gem version does not have any officially reported memory leaked issues.
No license issues detected.
This gem version has a license in the gemspec.
This gem version is available.
This gem version has not been yanked and is still available for usage.