[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256288

 
 

909

 
 

199146

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

CVE-2016-2098 -- ruby-rails-4.0, ruby-actionpack-3.2

ID: oval:org.secpod.oval:def:1900830Date: (C)2019-03-05   (M)2022-09-23
Class: VULNERABILITYFamily: unix




Action Pack in Ruby on Rails before 3.2.22.2, 4.x before 4.1.14.2, and 4.2.x before 4.2.5.2 allows remote attackers to execute arbitrary Ruby code by leveraging an application"s unrestricted use of the render method.

Platform:
Ubuntu 14.04
Product:
ruby-rails-4.0
ruby-actionpack-3.2
Reference:
CVE-2016-2098
CVE    1
CVE-2016-2098
CPE    3
cpe:/o:ubuntu:ubuntu_linux:14.04
cpe:/a:rubyonrails:ruby-actionpack-3.2
cpe:/a:rails-4.0:ruby-rails-4.0

© SecPod Technologies