High severity vulnerability that affects private_address_check

2017-11-30T23:14:55
ID GHSA-3V3C-R5V2-68PH
Type github
Reporter GitHub Advisory Database
Modified 2021-01-08T20:00:19

Description

The private_address_check ruby gem before 0.4.1 is vulnerable to a bypass due to an incomplete blacklist of common private/local network addresses used to prevent server-side request forgery.