3 matches found
CVE-2020-16252
The Field Test gem 0.2.0 through 0.3.2 for Ruby allows CSRF...
CVE-2020-16252
The CVE-2020-16252 entry concerns the Field Test gem (Ruby) versions 0.2.0–0.3.2, vulnerable to Cross-Site Request Forgery (CSRF). The issue stems from Rails CSRF protection behavior: protect_from_forgery defaults were effectively unhelpful for non-session authentication, later adjusted to with: ...
CVE-2020-16252
The Field Test gem 0.2.0 through 0.3.2 for Ruby allows CSRF...