CVE-2024-26143 | Ruby on Rails up to 7.0.8.0/7.1.3.0 cross site scripting (GHSA-9822-6m93-xqf4)

Inserito da Angelo Barbosa | Feb 27, 2024 | CVE

A vulnerability was found in Ruby on Rails up to 7.0.8.0/7.1.3.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-26143. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26143 | Ruby on Rails up to 7.0.8.0/7.1.3.0 cross site scripting (GHSA-9822-6m93-xqf4)

Post correlati

CVE-2023-50186 | GStreamer AV1 Video Parser stack-based overflow

CVE-2024-27659 | D-Link DIR-823G 1.0.2B05 sub_42AF30 null pointer dereference

CVE-2024-10672 | Multiple Page Generator Plugin up to 4.0.2 on WordPress path traversal

CVE-2024-51259 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi setup_cacertificate command injection