RubyGems package
govuk_tech_docs
pkg:gem/govuk_tech_docs
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-22048 | Med | 6.1 | >= 2.0.2, < 3.3.1 | 3.3.1 | Jan 4, 2024 | govuk_tech_docs versions from 2.0.2 to before 3.3.1 are vulnerable to a cross-site scripting vulnerability. Malicious JavaScript may be executed in the user's browser if a malicious search result is displayed on the search page. |
- affected >= 2.0.2, < 3.3.1fixed 3.3.1
govuk_tech_docs versions from 2.0.2 to before 3.3.1 are vulnerable to a cross-site scripting vulnerability. Malicious JavaScript may be executed in the user's browser if a malicious search result is displayed on the search page.