VYPR

Phlex

by Yippee Fun

gem: phlex

Source repositories

CVEs (2)

  • CVE-2024-32970HigApr 30, 2024
    risk 0.39cvss 7.1epss 0.01

    Phlex is a framework for building object-oriented views in Ruby. In affected versions there is a potential cross-site scripting (XSS) vulnerability that can be exploited via maliciously crafted user data. Since the last two vulnerabilities https://github.com/phlex-ruby/phlex/secu…

  • CVE-2024-32463HigApr 17, 2024
    risk 0.39cvss 7.1epss 0.01

    phlex is an open source framework for building object-oriented views in Ruby. There is a potential cross-site scripting (XSS) vulnerability that can be exploited via maliciously crafted user data. The filter to detect and prevent the use of the `javascript:` URL scheme in the…