10 Jan '18, 2pm

Vulnerability Spotlight: Ruby Rails Gem XSS Vulnerabilities

Vulnerabilities discovered by Zachary Sanchez of Cisco ASIG Overview Talos has discovered two XSS vulnerabilities in Ruby Rails Gems. Rails is a Ruby framework designed to create web services or web pages. Ruby Gems is a package manager for distributing software packages as 'gems'. The two XSS vulnerabilities were discovered in two different gem packages: delayed_job_web and rails_admin. Ruby is widely used as a language for web development. Gem packages allow software engineers to reuse code across multiple development projects. As such, the discovery of a vulnerability in a gem may mean that many different systems are affected by that vulnerability. Details TALOS-2017-0449 (CVE-2017-12097) - delayed_job_web rails gem XSS vulnerability An exploitable XSS vulnerability exists in the filter functionality of the delayed_job_web rails gem version 1.4. A specially crafted URL ...

Full article: http://blog.talosintelligence.com/2018/01/vulnerability-s...

Tweets

Vulnerability Spotlight: Ruby Rails Gem XSS Vul...

blogs.cisco.com 10 Jan '18, 2pm

Talos has discovered two XSS vulnerabilities in Ruby Rails Gems. Rails is a Ruby framework designed to create web services...

Vulnerability Spotlight: Ruby Rails Gem XSS Vul...

securityshelf.com 11 Jan '18, 5pm

Vulnerabilities discovered by Yves Younan from Talos Overview Talos has discovered two XSS vulnerabilities in Ruby Rails G...

Ruby on Rails Development Company in India

Ruby on Rails Development Company in India

mitosistech.com 11 Jan '18, 9am

September 16, 2016 in eCommerce , Product Application Development , product re engineering No Comments 192 We have three a...

New Job Alert: I need a freelance Ruby on Rails...

freelancer.com 10 Jan '18, 10am

i need freelance android application developer , i need a ruby on rails programmer help asap , i am a ui developer and i n...

ruby: 「プログラミング初心者に Rails を教えるコツ」を発表した - kakakak...

kakakakakku.hatenablog.com 13 Jan '18, 12pm

GitHub - JuanitoFatas/fast-ruby: Writing Fast Ruby -- Collect Common Ruby idioms.

Ruby Rails Gem Cross-Site Scripting Vulnerability

Ruby Rails Gem Cross-Site Scripting Vulnerability

systemtek.co.uk 16 Jan '18, 9pm

A vulnerability in the delayed_job_web rails gem could allow an unauthenticated, remote attacker to conduct a cross-site s...

Ruby on Rails Web Services and Integration with...

coursera.org 11 Jan '18, 1pm

In this course, we will explore MongoDB, a very popular NoSQL database and Web Services concepts and integrate them both w...

・twitter-text gem は他に unf gem にも依存 https://t.co...

rubygems.org 14 Jan '18, 5am

RubyGems.org is the Ruby community’s gem hosting service. Instantly publish your gems and then install them . Use the API ...

HOWTOs for Ruby on Rails, RSpec, Cucumber and J...

makandracards.com 11 Jan '18, 9am

ActiveSupport::Dependencies takes care of auto-loading any classes in development. This is usually useful, but when you ru...

lurn: A machine learning gem inspired by scikit...

github.com 12 Jan '18, 7pm

Lurn is a ruby gem for performing machine learning. The API and design patterns in Lurn are inspired by sklearn, an analog...

Learn all about #RubyonRails with @lansdalelibr...

techgirlz.org 16 Jan '18, 2pm

Have you ever wondered what goes into making a website or app? The programming framework ‘Ruby on Rails’ gives us countles...

Published a Ruby gem for @urlscanio API.

rubygems.org 20 Jan '18, 11am

RubyGems.org is the Ruby community’s gem hosting service. Instantly publish your gems and then install them . Use the API ...