Home Discussions10 of 63 messages view all » [CVE-2013-1854] Symbol DoS vulnerability in Active Record By Aaron Patterson - Mar 18 - 1 author - 0 replies [CVE-2013-1857] XSS Vulnerability in the `sanitize` helper of Ruby on Rails By Aaron Patterson - Mar 18 - 1 author - 0 replies [CVE-2013-1856] XML Parsing Vulnerability affecting JRuby users By Aaron Patterson - Mar 18 - 1 author - 0 replies [CVE-2013-1855] XSS vulnerability in sanitize_css in Action Pack By Aaron Patterson - Mar 18 - 1 author - 0 replies Upgrading the JSON gem By Aaron Patterson - Feb 11 - 1 author - 0 replies Patch update for [CVE-2013-0269] By Aaron Patterson - Feb 11 - 1 author - 0 replies Denial of Service and Unsafe Object Creation Vulnerability in JSON [CVE-2013-0269] By Aaron Patterson - Feb 11 - 1 author - 0 replies Serialized Attributes YAML Vulnerability with Rails 2.3 and 3.0 [CVE-2013-0277] By Aaron Patterson - Feb 11 - 1 author - 0 replies Circumvention of attr_protected [CVE-2013-0276] By Aaron Patterson - Feb 11 - 1 author - 0 replies Potential Query Manipulation with Common Rails Practises By Michael Koziarski - Feb 6 - 1 author - 0 replies Report this group   XML       Send email to this group: rubyonrails-security@googlegroups.com