Sha256: 4d9a4104695dfbe04d7b3d5912ce7d25da62574f8bacfe2d8dcfd3266be41ec8
Contents?: true
Size: 575 Bytes
Versions: 1
Compression:
Stored size: 575 Bytes
Contents
--- gem: features cve: 2013-4318 osvdb: 96975 url: https://nvd.nist.gov/vuln/detail/CVE-2013-4318 title: Features Gem for Ruby /tmp/out.html Local XSS date: 2013-09-01 description: Features Gem for Ruby contains a flaw that allows a local cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain input upon submission to /tmp/out.html. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/features/CVE-2013-4318.yml |