Potential Denial of Service Vulnerability in Rack (groups.google.com) 3 points by teeray 11y ago ↗ HN
[–] teeray 11y ago ↗ There were also a few other Rails CVEs announced today as well:CSRF Vulnerability in jquery-ujs / jquery-rails: https://groups.google.com/forum/#!topic/rubyonrails-security...XSS in ActiveSupport::JSON.encode: https://groups.google.com/forum/#!topic/rubyonrails-security...IP Whitelist Bypass in Web Console: https://groups.google.com/forum/#!topic/rubyonrails-security...
1 comment
[ 5.6 ms ] story [ 15.1 ms ] threadCSRF Vulnerability in jquery-ujs / jquery-rails: https://groups.google.com/forum/#!topic/rubyonrails-security...
XSS in ActiveSupport::JSON.encode: https://groups.google.com/forum/#!topic/rubyonrails-security...
IP Whitelist Bypass in Web Console: https://groups.google.com/forum/#!topic/rubyonrails-security...