Oval Definition:	oval:org.opensuse.security:def:20112931
Revision Date: 2015-11-16 Version: 1 Title: CVE-2011-2931 Description: Cross-site scripting (XSS) vulnerability in the strip_tags helper in actionpack/lib/action_controller/vendor/html-scanner/html/node.rb in Ruby on Rails before 2.3.13, 3.0.x before 3.0.10, and 3.1.x before 3.1.0.rc5 allows remote attackers to inject arbitrary web script or HTML via a tag with an invalid name. Family: unix Class: vulnerability Status: Reference(s): CVE-2011-2931 Platform(s): openSUSE 11.3 openSUSE 11.4 SUSE Linux Enterprise Software Development Kit 11 SP1 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Studio Extension for System z 1.2 SUSE Studio Onsite 1.2 [Appliance - Studio] SUSE Studio Standard Edition 1.2 WebYaST 1.2 Product(s):
BACK