Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-8163

Disclosure Date: July 02, 2020 (last updated October 07, 2023)
The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the `locals` argument of a `render` call to perform a RCE.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0