Sha256: ced23cc9a5b16db25d24cebd9d5da5534071470bd974f3d551df5821ca73cfa4
Contents?: true
Size: 490 Bytes
Versions: 2
Compression:
Stored size: 490 Bytes
Contents
--- url: http://direct.osvdb.org/show/osvdb/90072 title: Ruby on Rails Active Record attr_protected Method Bypass description: | Ruby on Rails contains a flaw in the attr_protected method of the Active Record. The issue is triggered during the handling of a specially crafted request, which may allow a remote attacker to bypass protection mechanisms and alter values that would otherwise be protected. cvss_v2: 5.0 patched_versions: - ~> 2.3.17 - ~> 3.1.11 - ">= 3.2.12"
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.1.1 | data/bundler/audit/rails/2013-0276.yml |
| bundler-audit-0.1.0 | data/bundler/audit/rails/2013-0276.yml |