Ruby On Rails · Action Pack · CVE-2022-3704
**Name of the Vulnerable Software and Affected Versions**
actionpack (affected versions not specified)
**Description**
The issue is related to the incorrect neutralization of input data during web page generation, potentially leading to cross-site scripting. It affects the file actionpack/lib/action dispatch/middleware/templates/routes/ table.html.erb. The manipulation can be initiated remotely, but the existence of this vulnerability is still disputed.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.