High severity vulnerability that affects dragonfly

2017-10-24T18:33:37
ID GHSA-P463-639R-Q9G9
Type github
Reporter GitHub Advisory Database
Modified 2019-07-03T21:02:00

Description

The Dragonfly gem 0.7 before 0.8.6 and 0.9.x before 0.9.13 for Ruby, when used with Ruby on Rails, allows remote attackers to execute arbitrary code via a crafted request.