CVE-2015-2784: Improper Input Validation

January 21, 2020 (updated January 29, 2020)

The papercrop gem for Ruby on Rails does not properly handle crop input.

References

nvd.nist.gov/vuln/detail/CVE-2015-2784

Detect and mitigate CVE-2015-2784 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →