0.001 Low
EPSS
Percentile
21.4%
A self cross-site scripting vulnerability was found in Ruby on Rails. This issue occurs when requesting a page that does not have a matching routing, allowing a user to create a script injection within the routing error page.
bugzilla.redhat.com/show_bug.cgi?id=2138957
github.com/rails/rails/issues/46244
nvd.nist.gov/vuln/detail/CVE-2022-3704
www.cve.org/CVERecord?id=CVE-2022-3704