CVE-2012-3465

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2012-3465
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2012-3465.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2012-3465
Aliases
Downstream
Published
2012-08-10T10:34:47Z
Modified
2025-08-09T20:01:26Z
Summary
[none]
Details

Cross-site scripting (XSS) vulnerability in actionpack/lib/actionview/helpers/sanitizehelper.rb in the strip_tags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via malformed HTML markup.

References

Affected packages