Sha256: 19a6d6eacca47d0d119b0af33e9243edf33e4a28ad7ce1996a9ab37dc2f4c543
Contents?: true
Size: 505 Bytes
Versions: 1
Compression:
Stored size: 505 Bytes
Contents
--- gem: omniauth-facebook cve: 2013-4593 osvdb: 99888 url: https://nvd.nist.gov/vuln/detail/CVE-2013-4593 title: omniauth-facebook Gem for Ruby Insecure Access Token Handling Authentication Bypass date: 2013-11-14 description: | omniauth-facebook Gem for Ruby contains a flaw that is due to the application supporting passing the access token via the URL. This may allow a remote attacker to bypass authentication and authenticate as another user. cvss_v2: 6.8 patched_versions: - ">= 1.5.1"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/omniauth-facebook/CVE-2013-4593.yml |