This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
Ruby Security team reports :
There is a possible XSS vulnerability in Action View. Text declared as
'HTML safe' will not have quotes escaped when used as attribute values
in tag helpers. This vulnerability has been assigned the CVE
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 4.3