Ruby on Rails Translate Helper Method Cross Site Scripting Vulnerability

Bugtraq ID: 50722
Class: Input Validation Error
CVE: CVE-2011-4319
Remote: Yes
Local: No
Published: Nov 17 2011 12:00AM
Updated: Apr 13 2015 10:25PM
Credit: Sergey Nartimov
Vulnerable: Ruby on Rails Ruby on Rails 3.0.6
Ruby on Rails Ruby on Rails 3.0.5
Ruby on Rails Ruby on Rails 3.0.4
Ruby on Rails Ruby on Rails 3.0.3
Ruby on Rails Ruby on Rails 3.0.2
Ruby on Rails Ruby on Rails 3.0.1
Ruby on Rails Ruby on Rails 3.0
Ruby on Rails Ruby on Rails 3.1.0.rc6
Ruby on Rails Ruby on Rails 3.1.0.rc5
Ruby on Rails Ruby on Rails 3.0.8
Ruby on Rails Ruby on Rails 3.0.7
Ruby on Rails Ruby on Rails 3.0.10
Not Vulnerable: Ruby on Rails Ruby on Rails 3.1.2
Ruby on Rails Ruby on Rails 3.0.11


 

Privacy Statement
Copyright 2010, SecurityFocus