Lucene search
GoogleOSV:GHSA-X27V-X225-GQ8GHistoryDec 06, 2017 - 4:43 p.m.
Recurly gem Server-Side Request Forgery in Resource#find method
2017-12-0616:43:00
Google
osv.dev
5
0.004 Low
EPSS
Percentile
72.9%
The Recurly Client Ruby Library before 2.0.13, 2.1.11, 2.2.5, 2.3.10, 2.4.11, 2.5.4, 2.6.3, 2.7.8, 2.8.2, 2.9.2, 2.10.4, 2.11.3 is vulnerable to a Server-Side Request Forgery vulnerability in the Resource#find method that could result in compromise of API keys or other critical resources.
Related
prion
prion
Server side request forgery (ssrf)
2017-11-13 17:29:00
cve
cve
CVE-2017-0905
2017-11-13 17:29:00
osv
osv
CVE-2017-0905
2017-11-13 17:29:00
veracode
veracode
Server-Side Request Forgery (SSRF)
2017-11-14 08:45:28
nvd
nvd
CVE-2017-0905
2017-11-13 17:29:00
github
github
Recurly gem Server-Side Request Forgery in Resource#find method
2017-12-06 16:43:00
cvelist
cvelist
CVE-2017-0905
2017-11-06 00:00:00