2020-08-05 19:52:30
mitre
PUBLISHED
The Chartkick gem through 3.3.2 for Ruby allows Cascading Style Sheets (CSS) Injection (without attribute).