Red Hat Security Advisory 2013-0154-01

newsbot

newsbot

RSS Feed
Red Hat Security Advisory 2013-0154-01 - Ruby on Rails is a model-view-controller framework for web application development. Action Pack implements the controller and the view components. Active Record implements object-relational mapping for accessing database entries using objects. Active Support provides support and utility classes used by the Ruby on Rails framework. Multiple flaws were found in the way Ruby on Rails performed XML parameter parsing in HTTP requests. A remote attacker could use these flaws to execute arbitrary code with the privileges of a Ruby on Rails application, perform SQL injection attacks, or bypass the authentication using a specially-created HTTP request.

Weiterlesen...
 

Ähnliche Themen

Zugriff Ubuntu 16.04. auf Freigabe 18.04. LTS nicht möglich

Red Hat Security Advisory 2013-0155-01

Red Hat Security Advisory 2013-0153-01

Debian Security Advisory 2597-1

Debian Security Advisory 2604-1

Zurück
Oben