2 matches found
CVE-2012-6134
Cross-site request forgery CSRF vulnerability in the omniauth-oauth2 gem 1.1.1 and earlier for Ruby allows remote attackers to hijack the authentication of users for requests that modify session state...
CVE-2012-6134
CVE-2012-6134: CSRF vulnerability in the Ruby gem omniauth-oauth2 (versions 1.1.1 and earlier) allows remote attackers to hijack user authentication for requests that modify session state. Affected component is the omniauth-oauth2 gem for Ruby; root cause is cross-site request forgery. Connected ...