Avo 输入验证错误漏洞

Avo is an open source ruby on rails admin panel creation framework from Avo Open Source. An input validation error vulnerability exists in Avo version 2.33.2, version 3.0.0.pre12. The vulnerability stems from a user storing input and updating a record class using a polymorphic field type that doe...

Avo 跨站脚本漏洞

Avo is an open source ruby on rails admin panel creation framework from Avo Open Source. A cross-site scripting vulnerability exists in Avo version 2.33.2, 3.0.0.pre12, which stems from the vulnerability of certain avo fields to XSS attacks when rendering html-based content...