Actionpack Project Actionpack 7.0.0 for Ruby

CPE Details

Actionpack Project Actionpack 7.0.0 for Ruby
7.0.0
2023-02-16
19h15 +00:00
2023-02-16
20h01 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:actionpack_project:actionpack:7.0.0:-:*:*:*:ruby:*:*

Informations

Vendor

actionpack_project

Product

actionpack

Version

7.0.0

Update

-

Target Software

ruby

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-22797 2023-02-09 00h00 +00:00 An open redirect vulnerability is fixed in Rails 7.0.4.1 with the new protection against open redirects from calling redirect_to with untrusted user input. In prior versions the developer was fully responsible for only providing trusted input. However the check introduced could allow an attacker to bypass with a carefully crafted URL resulting in an open redirect vulnerability.
6.1
Medium