Ruby HTTParty CVE-2013-1801 Parameter Parsing Vulnerability

HTTParty is prone to a parameter parsing vulnerability.

An attacker can exploit this vulnerability to bypass certain security restrictions, execute arbitrary code in the context of the affected application, exploit latent vulnerabilities in the underlying database, deny service to legitimate users, or perform unauthorized actions. Other attacks are also possible.

HTTParty versions 0.9.0 and prior are affected.


 

Privacy Statement
Copyright 2010, SecurityFocus