GHSA-q58j-fmvf-9rq6, CVE-2011-1497
gem/actionpack
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
A cross-site scripting vulnerability flaw was found in the auto_link function in Rails before version 3.0.6.
All versions before 3.0.6
Upgrade to version 3.0.6 or above.
2023-05-29
source |