CVE-2020-5241: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

February 13, 2020 (updated February 18, 2020)

matestack-ui-core (RubyGem) is vulnerable to XSS/Script injection. This vulnerability is patched

References

github.com/matestack/matestack-ui-core/security/advisories/GHSA-3jqw-vv45-mjhh
nvd.nist.gov/vuln/detail/CVE-2020-5241

Detect and mitigate CVE-2020-5241 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →