Sha256: 699c7b4b58a5238724c638383b61796858a09dc7f31d232e123fb1f5dea3c9af

Contents?: true

Size: 776 Bytes

Versions: 7

Compression:

Stored size: 776 Bytes

Contents

require 'brakeman/checks/base_check'

#Check for filter skipping vulnerability
#http://groups.google.com/group/rubyonrails-security/browse_thread/thread/3420ac71aed312d6
class Brakeman::CheckFilterSkipping < Brakeman::BaseCheck
  Brakeman::Checks.add self

  def run_check
    if version_between?('3.0.0', '3.0.9') and uses_arbitrary_actions?

      warn :warning_type => "Default Routes",
        :message => "Versions before 3.0.10 have a vulnerability which allows filters to be bypassed: CVE-2011-2929",
        :confidence => CONFIDENCE[:high],
        :file => gemfile_or_environment
    end
  end

  def uses_arbitrary_actions?
    tracker.routes.each do |name, actions|
      if actions == :allow_all_actions
        return true
      end
    end

    false
  end
end

Version data entries

7 entries across 7 versions & 1 rubygems

Version Path
brakeman-1.2.2 lib/brakeman/checks/check_filter_skipping.rb
brakeman-1.2.1 lib/brakeman/checks/check_filter_skipping.rb
brakeman-1.2.0 lib/brakeman/checks/check_filter_skipping.rb
brakeman-1.1.0 lib/brakeman/checks/check_filter_skipping.rb
brakeman-1.1.pre lib/brakeman/checks/check_filter_skipping.rb
brakeman-1.0.0 lib/brakeman/checks/check_filter_skipping.rb
brakeman-1.0.rc1 lib/brakeman/checks/check_filter_skipping.rb