Download
| Alert*
oval:org.secpod.oval:def:103138
Utility library which carries commonly used classes and goodies from the Rails framework oval:org.secpod.oval:def:2498 The host is installed with Ruby on Rails before 2.3.13 or 3.0.x before 3.0.10 or 3.1.x before 3.1.0.rc5 and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the application which fails to properly handle escaping function. Successful exploitation allows remote attackers to ... oval:org.secpod.oval:def:103121 Utility library which carries commonly used classes and goodies from the Rails framework oval:org.secpod.oval:def:601000 Several cross-site-scripting and denial of service vulnerabilities were discovered in Ruby on Rails, a Ruby framework for web application development. |