Taise

**Name of the Vulnerable Software and Affected Versions** Node.js (affected versions not specified) **Description** A vulnerability has been identified in Node.js, specifically affecting the handling of drive names in the Windows environment. Certain Node.js functions do not treat drive names as special on Windows. As a result, although Node.js assumes a relative path, it actually refers to the root directory. On Windows, a path that does not start with the file separator is treated as relative to the current directory. This vulnerability affects Windows users of the `path.join` API. **Recommendations** As a temporary workaround, consider disabling the `path.join` API until a patch is available. Restrict access to the `path.join` function to minimize the risk of exploitation. Avoid using relative paths in the `path.join` API until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: rails-html-sanitizer version 1.6.0 Description: The issue is related to a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer when used with Rails >= 7.1.0 and Nokogiri < 1.15.7, or 1.16.x < 1.16.8. This vulnerability may allow an attacker to inject content if HTML5 sanitization is enabled and the application developer has overridden the sanitizer's allowed tags with both "math" and "style" elements or both "svg" and "style" elements. Recommendations: For rails-html-sanitizer version 1.6.0, upgrade to version 1.6.1 to fix the vulnerability. As a temporary workaround, consider removing "style" from the overridden allowed tags, or remove "math" and "svg" from the overridden allowed tags, or downgrade sanitization to HTML4. Alternatively, independently upgrade Nokogiri to v1.15.7 or >= 1.16.8.

Name of the Vulnerable Software and Affected Versions: rails-html-sanitizer version 1.6.0 Description: A possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer may allow an attacker to inject content if HTML5 sanitization is enabled and the application developer has overridden the sanitizer's allowed tags where the "math" and "style" elements are both explicitly allowed. This issue is relevant when used with Rails >= 7.1.0. The default configuration is to disallow these elements, and code is only impacted if allowed tags are being overridden. Recommendations: For rails-html-sanitizer version 1.6.0, upgrade to version 1.6.1 to fix the vulnerability. As a temporary workaround, consider removing "math" or "style" from the overridden allowed tags, or downgrade sanitization to HTML4 by configuring `config.action view.sanitizer vendor` and `config.action text.sanitizer vendor` accordingly.

Name of the Vulnerable Software and Affected Versions: rails-html-sanitizer version 1.6.0 Description: A possible XSS vulnerability exists with certain configurations of Rails::HTML::Sanitizer when used with Rails >= 7.1.0. This vulnerability may allow an attacker to inject content if HTML5 sanitization is enabled and the application developer has overridden the sanitizer's allowed tags where the `style` element is explicitly allowed and the `svg` or `math` element is not allowed. Recommendations: For rails-html-sanitizer version 1.6.0, upgrade to version 1.6.1 to fix the vulnerability. As a temporary workaround, consider removing `style` from the overridden allowed tags or downgrading sanitization to HTML4.

Name of the Vulnerable Software and Affected Versions: rails-html-sanitizer version 1.6.0 Description: There is a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer when used with Rails >= 7.1.0. This issue may allow an attacker to inject content if HTML5 sanitization is enabled and the application developer has overridden the sanitizer's allowed tags where the "math", "mtext", "table", and "style" elements are allowed and either "mglyph" or "malignmark" are allowed. Recommendations: For rails-html-sanitizer version 1.6.0, upgrade to version 1.6.1 to fix the vulnerability. Alternatively, remove "mglyph" and "malignmark" from the overridden allowed tags or downgrade sanitization to HTML4.

Name of the Vulnerable Software and Affected Versions: rails-html-sanitizer versions 1.6.0 Description: The issue is related to a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer when used with Rails >= 7.1.0. This vulnerability may allow an attacker to inject content if HTML5 sanitization is enabled and the application developer has overridden the sanitizer's allowed tags for the "noscript" element. Recommendations: For rails-html-sanitizer version 1.6.0, upgrade to version 1.6.1 to fix the vulnerability. As a temporary workaround, consider removing "noscript" from the overridden allowed tags or downgrading sanitization to HTML4.