Sha256: 1c4f005b1ae15d2ffe30b7ae969778dc34f8d2cdb8e8bf4a70b838deecfeec3a
Contents?: true
Size: 1.26 KB
Versions: 2
Compression:
Stored size: 1.26 KB
Contents
require 'spec_helper'
describe "The CVE-2015-1840 vulnerability" do
before(:all) do
@check_a = Dawn::Kb::CVE_2015_1840_a.new
@check_b = Dawn::Kb::CVE_2015_1840_b.new
end
it "is reported when vulnerable jquery-rails gem is used (3.1.2)" do
@check_a.dependencies = [{:name=>"jquery-rails", :version=>'3.1.2'}]
@check_a.vuln?.should == true
end
it "is reported when vulnerable jquery-rails gem is used 4.0.1)" do
@check_a.dependencies = [{:name=>"jquery-rails", :version=>'4.0.1'}]
@check_a.vuln?.should == true
end
it "is reported when vulnerable jquery-ujs gem is used 1.0.3)" do
@check_b.dependencies = [{:name=>"jquery-ujs", :version=>'1.0.3'}]
@check_b.vuln?.should == true
end
it "is reported when vulnerable jquery-rails gem is used (3.1.3)" do
@check_a.dependencies = [{:name=>"jquery-rails", :version=>'3.1.3'}]
@check_a.vuln?.should == false
end
it "is reported when vulnerable jquery-rails gem is used 4.0.2)" do
@check_a.dependencies = [{:name=>"jquery-rails", :version=>'4.0.2'}]
@check_a.vuln?.should == false
end
it "is reported when vulnerable jquery-ujs gem is used 1.0.4)" do
@check_b.dependencies = [{:name=>"jquery-ujs", :version=>'1.0.4'}]
@check_b.vuln?.should == false
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| dawnscanner-1.4.0 | spec/lib/kb/cve_2015_1840_spec.rb |
| dawnscanner-1.3.5 | spec/lib/kb/cve_2015_1840_spec.rb |