lib/brakeman/checks/check_model_serialize.rb in brakeman-min-4.5.0 vs lib/brakeman/checks/check_model_serialize.rb in brakeman-min-4.5.1
- old
+ new
@@ -52,10 +52,10 @@
confidence = :medium
else
confidence = :high
end
- warn :model => model.name,
+ warn :model => model,
:warning_type => "Remote Code Execution",
:warning_code => :CVE_2013_0277,
:message => msg("Serialized attributes are vulnerable in ", msg_version(rails_version), ", upgrade to ", msg_version(@upgrade_version), " or patch"),
:confidence => confidence,
:link => "https://groups.google.com/d/topic/rubyonrails-security/KtmwSbEpzrU/discussion",