Vulners
Lucene search
Ruby on Rails: CSRF header is sent to external websites when using data-remote forms
| Reporter | Title | Published | Views | Family All 120 |
|---|---|---|---|---|
 | Rails -- multiple vulnerabilities | 18 May 202000:00 | – | freebsd |
| rubygem-rails -- multiple vulnerabilities | 16 Jun 201500:00 | – | freebsd |
 | The vulnerability of the Ruby on Rails software platform, related to the manipulation of cross-site requests, allows attackers to send CSRF tokens to incorrect domains. | 17 Jul 202500:00 | – | bdu_fstec |
 | CVE-2020-8167 | 8 Nov 202018:57 | – | circl |
 | Ruby on Rails jquery-ujs and jquery-rails Security Bypass Vulnerabilities | 26 Jun 201500:00 | – | cnvd |
| Ruby on Rails Cross-Site Request Forgery Vulnerability (CNVD-2020-34299) | 21 May 202000:00 | – | cnvd |
 | CVE-2015-1840 | 26 Jul 201522:00 | – | cve |
| CVE-2020-8167 | 19 Jun 202017:16 | – | cve |
 | CVE-2015-1840 | 26 Jul 201522:00 | – | cvelist |
| CVE-2020-8167 | 19 Jun 202017:16 | – | cvelist |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
26 May 2020 22:38Current
7.9High risk
Vulners AI Score7.9
EPSS0.04519