Alan Jenkins

**Name of the Vulnerable Software and Affected Versions** Ruby on Rails versions prior to 2.3.18 Ruby on Rails versions 3.0.x through 3.1.11 Ruby on Rails versions 3.2.x through 3.2.12 **Description** The sanitize helper in the Action Pack component does not properly handle encoded : (colon) characters in URLs. This issue makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted scheme name. The attack can be demonstrated by including a : sequence in the URL. **Recommendations** For Ruby on Rails versions prior to 2.3.18, update to version 2.3.18 or later. For Ruby on Rails versions 3.0.x through 3.1.11, update to version 3.1.12 or later. For Ruby on Rails versions 3.2.x through 3.2.12, update to version 3.2.13 or later.