Cross-site request forgery (CSRF) vulnerability in the omniauth-oauth2 gem 1.1.1 and earlier for Ruby allows remote attackers to hijack the authentication of users for requests that modify session state.
CPE | Name | Operator | Version |
---|---|---|---|
omniauth-oauth2 | lt | 1.1.1 |