CVE-2015-10053
CVE-2015-10053 affects prodigasistemas curupira up to 0.1.3. The vulnerability lies in an unknown function within the file app/controllers/curupira/passwords_controller.rb , whose manipulation enables a SQL injection . A fix is available in version 0.1.4 , with patch hash 93a9a77896bb66c949acb8e6...