Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
CVE-2018-16468 - Loofah XSS Vulnerability #154
CVE-2018-16468 - Loofah XSS Vulnerability
I'd like to thank HackerOne for providing a secure, responsible mechanism for reporting, and for providing their fantastic service to the Loofah maintainers.
Loofah maintainers have evaluated this as Medium (CVSS3 6.4).
Loofah < v2.2.3.
Upgrade to Loofah v2.2.3.
History of this public disclosure
2018-10-27: disclosure created, all information is embargoed