Cvedetails.Com Site Info - OpenRuby.com

Follow @openruby

#NA

cvedetails.com

http://openruby.com/sites/cvedetails.com

Rubyonrails Ruby On Rails : List of security vulnerabilities

cvedetails.com 30 Jan '13, 9pm

active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15, 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly restrict casts of string values, which allows remote attackers to conduct object-injection attacks and execute arbitrary code...
Related:
1. Djangoproject Django : List of security vulnerabilities cvedetails.com 30 Jan '13, 9pm
2. Ruby on Rails receives the third security patch this month - Techworld.com news.techworld.com 30 Jan '13, 9am
3. Ruby on Rails receives the third security patch this month - Techworld.com news.techworld.com 30 Jan '13, 11am
4. Ruby on Rails receives the third security patch in less than a month networkworld.com 30 Jan '13, 1pm
5. Ruby on Rails receives third security patch in less than a month - Computer... computerworld.com 30 Jan '13, 9am
6. What The Rails Security Issue Means For Your Startup | Kalzumeus Software kalzumeus.com 31 Jan '13, 3pm
7. Ruby on Rails receives the third security patch in less than a month pcworld.com 29 Jan '13, 9pm
8. Ruby on Rails receives its third security patch in less than a month | Secu... infoworld.com 29 Jan '13, 7pm
Djangoproject Django : List of security vulnerabilities

cvedetails.com 30 Jan '13, 9pm

The get_image_dimensions function in the image-handling functionality in Django before 1.3.2 and 1.4.x before 1.4.1 uses a constant chunk size in all attempts to determine dimensions, which allows remote attackers to cause a denial of service (process or thread consumption) via a larg...
Related:
1. Rubyonrails Ruby On Rails : List of security vulnerabilities cvedetails.com 30 Jan '13, 9pm

Related