• info
• discussion
• exploit
• solution
• references

Ruby on Rails 'strip_tags()' Non-Printable Character Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting victim into following a malicious URI.