SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

OVAL

DSA-4766-1 rails -- rails

ID: oval:org.secpod.oval:def:605049	Date: (C)2020-09-28 (M)2023-10-10
Class: PATCH	Family: unix

Multiple security issues were discovered in the Rails web framework which could result in cross-site scripting, information leaks, code execution, cross-site request forgery or bypass of upload limits.

Platform:

Debian 10.x

Product:

ruby-railties

ruby-activemodel

ruby-activejob

ruby-activestorage

ruby-actionmailer

rails

ruby-activerecord

ruby-actioncable

ruby-rails

ruby-actionview

ruby-activesupport

ruby-actionpack

Reference:


30479



423868



248268



909



195051



282