The PgHero gem through 2.6.0 for Ruby allows CSRF.
References
Link | Resource |
---|---|
https://github.com/ankane/pghero/ | Third Party Advisory |
https://github.com/ankane/pghero/issues/330 | Third Party Advisory |
Configurations
Information
Published : 2020-08-05 07:15
Updated : 2020-08-05 08:35
NVD link : CVE-2020-16253
Mitre link : CVE-2020-16253
JSON object : View
CWE
CWE-352
Cross-Site Request Forgery (CSRF)
Products Affected
pghero_project
- pghero