CVE-2024-26143 | Ruby on Rails up to 7.0.8.0/7.1.3.0 cross site scripting (GHSA-9822-6m93-xqf4)

Inserito da Angelo Barbosa | Feb 27, 2024 | CVE

A vulnerability was found in Ruby on Rails up to 7.0.8.0/7.1.3.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-26143. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26143 | Ruby on Rails up to 7.0.8.0/7.1.3.0 cross site scripting (GHSA-9822-6m93-xqf4)

Post correlati

CVE-2024-5576 | Tutor LMS Elementor Addons Plugin up to 2.1.4 on WordPress Course Carousel Widget cross site scripting

CVE-2023-52634 | Linux Kernel up to 6.7.3 DRM disable_otg_wa denial of service (ce29728ef648/2ce156482a6f)

CVE-2024-34586 | Samsung Devices up to SMR Feb-2021 Release 1 KnoxCustomManagerService insufficient permissions or privileges

CVE-2024-3523 | Campcodes Online Event Management System 1.0 /views/index.php ID sql injection