Vulnerability & Exploit Database

Back to search

FreeBSD: rails -- multiple vulnerabilities (Multiple CVEs)

Severity CVSS Published Added Modified
5 (AV:N/AC:L/Au:N/C:N/I:P/A:N) January 25, 2016 February 04, 2016 October 30, 2017

Available Exploits 


Active Model in Ruby on Rails 4.1.x before, 4.2.x before, and 5.x before 5.0.0.beta1.1 supports the use of instance-level writers for class accessors, which allows remote attackers to bypass intended validation steps via crafted parameters.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now




Related Vulnerabilities