Yasins

**Name of the Vulnerable Software and Affected Versions** Loofah gem for Ruby versions through 2.2.2 **Description** The issue is related to insufficient sanitization of SVG elements in JavaScript, which can lead to the occurrence of unsanitized JavaScript in sanitized output when a crafted SVG element is republished. This can allow a remote attacker to inject arbitrary JavaScript code. **Recommendations** For versions through 2.2.2, upgrade to version 2.2.3 to resolve the issue.