← Back to CVE List
CVE-2017-14506
Published:
2017-09-25T08:29Z
Last Modified:
2024-11-21T03:12Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
geminabox (aka Gem in a Box) before 0.13.6 has XSS, as demonstrated by uploading a gem file that has a crafted gem.homepage value in its .gemspec file. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt