Ruby on Rails SafeBuffer Object [] Direct Manipulation XSS

lalithr95 / invoice-app

Mainly gives users access to creating invoices and maintaining without any pen and paper

MIT License

1 stars 0 forks source link

Ruby on Rails SafeBuffer Object [] Direct Manipulation XSS #157

Open apifuzzer opened 8 years ago

apifuzzer commented 8 years ago

Package : activesupport
Version : 3.0.0
Patched Versions : ~> 3.0.12 or ~> 3.1.4 or >= 3.2.2
Safe Versions : < 3.0.0
CVE : 2012-1098
URL : http://osvdb.org/79726
Disclosure date : 2012-03-01
cc: @lalithr95

apifuzzer commented 8 years ago

Reference: lalithr95/Inline-chat#94