FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Rails -- Possible XSS vulnerability

Affected packages
rubygem-actionpack60 < 6.0.3.4

Details

VuXML ID 95f306a6-0aee-11eb-add4-08002728f74c
Discovery 2020-10-07
Entry 2020-10-10

Ruby on Rails blog:

Rails version 6.0.3.4 has been released! This version is a security release and addresses one possible XSS attack vector in Actionable Exceptions.

[source]

References

CVE Name CVE-2020-8264
URL https://weblog.rubyonrails.org/2020/10/7/Rails-6-0-3-4-has-been-released/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.