Ruby on Rails: Security

Showing 1-20 of 97 topics
[CVE-2016-6316] Possible XSS Vulnerability in Action View Aaron Patterson 8/11/16
[CVE-2016-6317] Unsafe Query Generation Risk in Active Record Aaron Patterson 8/11/16
[CVE-2016-2098] Possible remote code execution vulnerability in Action Pack Rafael Mendonça França 2/29/16
[CVE-2016-2097] Possible Information Leak Vulnerability in Action View. Rafael Mendonça França 2/29/16
[CVE-2015-7581] Object leak vulnerability for wildcard controller routes in Action Pack Aaron Patterson 1/25/16
[CVE-2015-7578] Possible XSS vulnerability in rails-html-sanitizer Aaron Patterson 1/25/16
[CVE-2016-0753] Possible Input Validation Circumvention in Active Model Aaron Patterson 1/25/16
[CVE-2016-0752] Possible Information Leak Vulnerability in Action View Aaron Patterson 1/25/16
[CVE-2015-7579] XSS vulnerability in rails-html-sanitizer Aaron Patterson 1/25/16
[CVE-2015-7577] Nested attributes rejection proc bypass in Active Record. Aaron Patterson 1/25/16
[CVE-2016-0751] Possible Object Leak and Denial of Service attack in Action Pack Aaron Patterson 1/25/16
[CVE-2015-7576] Timing attack vulnerability in basic authentication in Action Controller. Aaron Patterson 1/25/16
[CVE-2015-3227] Possible Denial of Service attack in Active Support Aaron Patterson 6/16/15
[CVE-2015-3224] IP whitelist bypass in Web Console Aaron Patterson 6/16/15
[CVE-2015-3226] XSS Vulnerability in ActiveSupport::JSON.encode Aaron Patterson 6/16/15
[CVE-2015-1840] CSRF Vulnerability in jquery-ujs and jquery-rails Aaron Patterson 6/16/15
[CVE-2015-3225] Potential Denial of Service Vulnerability in Rack Aaron Patterson 6/16/15
[AMENDED] [CVE-2014-7829] Arbitrary file existence disclosure in Action Pack Aaron Patterson 11/20/14
[CVE-2014-7829] Arbitrary file existence disclosure in Action Pack Aaron Patterson 11/17/14
[AMENDED] [CVE-2014-7819] Arbitrary file existence disclosure in Sprockets Aaron Patterson 10/30/14
More topics »