RubygemsResearch

Sha256: 757272112a56402332c481f570108a6776f740d3fdba27ff8cb14c815a4e6988

Contents?: true

Size: 532 Bytes

Versions: 1

Compression:

Stored size: 532 Bytes

--- 
gem: actionpack
cve: 2013-0156
url: http://osvdb.org/show/osvdb/89026
title:
  Ruby on Rails params_parser.rb Action Pack Type Casting Parameter Parsing
  Remote Code Execution 

description: |
  Ruby on Rails contains a flaw in params_parser.rb of the Action Pack.
  The issue is triggered when a type casting error occurs during the parsing
  of parameters. This may allow a remote attacker to potentially execute
  arbitrary code.

cvss_v2: 10.0

patched_versions: 
  - ~> 2.3.15
  - ~> 3.0.19
  - ~> 3.1.10
  - ">= 3.2.11"

Version data entries

1 entries across 1 versions & 1 rubygems

Version	Path
bundler-audit-0.1.2	data/ruby-advisory-db/gems/actionpack/2013-0156.yml