Sha256: c4790d0b70415a417a020c78636664458d6a183a95f6ac93345275193999a1b3

Contents?: true

Size: 379 Bytes

Versions: 6

Compression:

Stored size: 379 Bytes

Contents

---
gem: spree
osvdb: 125713
url: https://spreecommerce.com/blog/security-issue-all-versions
title: |
  Potential XSS vulnerability related to the analytics dashboard
date: 2012-07-02
description: |
  Spree has a flaw in its analytics dashboard where keywords are not escaped,
  leading to potential XSS.
patched_versions:
  - ~> 0.11.4
  - ~> 0.70.6
  - ~> 1.0.5
  - ">= 1.1.2"

Version data entries

6 entries across 6 versions & 2 rubygems

Version Path
bundler-audit-0.7.0.1 data/ruby-advisory-db/gems/spree/OSVDB-125713.yml
bundler-budit-0.6.2 data/ruby-advisory-db/gems/spree/OSVDB-125713.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/spree/OSVDB-125713.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/spree/OSVDB-125713.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/spree/OSVDB-125713.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/spree/OSVDB-125713.yml