CVE-2017-14683
Gem in a Box (geminabox) CVE-2017-14683 affects versions before 0.13.7 and is due to a Cross-Site Request Forgery (CSRF) flaw demonstrated by an unintended gem upload. Affected software is geminabox, a Ruby-based personal code hosting platform. The Root Cause, per the description, is CSRF allowin...