VYPR

rpm package

opensuse/rubygem-actiontext-7.0&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/rubygem-actiontext-7.0&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2024-47888MedOct 16, 2024
    affected < 7.0.8.6-1.1fixed 7.0.8.6-1.1

    Action Text brings rich text content and editing to Rails. Starting in version 6.0.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and 7.2.1.1, there is a possible ReDoS vulnerability in the `plain_text_for_blockquote_node helper` in Action Text. Carefully crafted text can cau

  • CVE-2024-34341MedMay 7, 2024
    affected < 7.0.8.4-1.1fixed 7.0.8.4-1.1

    Trix is a rich text editor. The Trix editor, versions prior to 2.1.1, is vulnerable to arbitrary code execution when copying and pasting content from the web or other documents with markup into the editor. The vulnerability stems from improper sanitization of pasted content, allo