CVE-2024-26144 | Ruby on Rails up to 6.1.7.6/7.0.8.0 Active Storage information disclosure (GHSA-8h22-8cf7-hq6g)

Inserito da Angelo Barbosa | Feb 27, 2024 | CVE

A vulnerability was found in Ruby on Rails up to 6.1.7.6/7.0.8.0 and classified as problematic. This issue affects some unknown processing of the component Active Storage. The manipulation leads to information disclosure.

The identification of this vulnerability is CVE-2024-26144. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26144 | Ruby on Rails up to 6.1.7.6/7.0.8.0 Active Storage information disclosure (GHSA-8h22-8cf7-hq6g)

Post correlati

CVE-2024-7643 | SourceCodester Leads Manager Tool 1.0 Delete Leads delete-leads.php leads sql injection

CVE-2024-4711 | Infinite Scroll Plugin up to 7.1.1 on WordPress cross site scripting

CVE-2024-5862 | Mia Technology Mia-Med Health Aplication up to 1.0.13 excessive authentication

CVE-2024-34759 | VideoWhisper Picture Gallery Plugin up to 1.5.11 on WordPress cross site scripting