11 matches found
RHEL 7 : Satellite 6.3 (RHSA-2018:0336)
"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0336 advisory. Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitorin...
Important: Red Hat Security Advisory: Satellite 6.3 security, bug fix, and enhancement update
An update is now available for Red Hat Satellite. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...
MGASA-2014-0054 Updated ruby-will_paginate package fixes CVE-2013-6459
Updated ruby-willpaginate packages fix security vulnerability: Cross-Site Scripting XSS vulnerabilities were found in willpaginate gem for Ruby, where certain input related to generated pagination links were not properly sanitised before being returned. This could be exploited to execute arbitrar...
Updated ruby-will_paginate package fixes CVE-2013-6459
Updated ruby-willpaginate packages fix security vulnerability: Cross-Site Scripting XSS vulnerabilities were found in willpaginate gem for Ruby, where certain input related to generated pagination links were not properly sanitised before being returned. This could be exploited to execute arbitrar...
Fedora 20 : rubygem-will_paginate-3.0.4-5.fc20 (2014-0066)
Fix XSS vulnerabilities CVE-2013-6459. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
Ruby will_paginate Gem跨站脚本漏洞
CVE ID:CVE-2013-6459 Ruby是跨平台、面向对象的动态类型编程语言。willpaginate是一个分页插件,提供将搜索结果进行分页显示的功能。 willpaginate gem for Ruby存在跨站脚本漏洞。远程攻击者可通过与生成的分页链接相关的输入利用该漏洞注入任意Web脚本或HTML。 0 willpaginate gem for Ruby 3.x 厂商补丁: Ruby ----- 厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: https://github.com/mislav/willpaginate/releases/tag/v3.0.5...
CVE-2013-6459
Cross-site scripting XSS vulnerability in the willpaginate gem before 3.0.5 for Ruby allows remote attackers to inject arbitrary web script or HTML via vectors involving generated pagination links...
CVE-2013-6459
Cross-site scripting XSS vulnerability in the willpaginate gem before 3.0.5 for Ruby allows remote attackers to inject arbitrary web script or HTML via vectors involving generated pagination links...
CVE-2013-6459
Cross-site scripting XSS vulnerability in the willpaginate gem before 3.0.5 for Ruby allows remote attackers to inject arbitrary web script or HTML via vectors involving generated pagination links...
CVE-2013-6459
Cross-site scripting XSS vulnerability in the willpaginate gem before 3.0.5 for Ruby allows remote attackers to inject arbitrary web script or HTML via vectors involving generated pagination links...
CVE-2013-6459 rubygem-will_paginate: XSS vulnerabilities
Cross-site scripting XSS vulnerability in the willpaginate gem before 3.0.5 for Ruby allows remote attackers to inject arbitrary web script or HTML via vectors involving generated pagination links. It was found that ruby willpaginate is vulnerable to a XSS via malformed input that cause paginatio...