5 matches found
Unsafe Reflection
Overview stimulusreflex is an exciting new way to build modern, reactive, real-time apps with Ruby on Rails. Affected versions of this package are vulnerable to Unsafe Reflection due to the handling of websocket messages that allow specifying a classname and methodname. An attacker can manipulate...
Fedora: Security Advisory for rubygem-pry (FEDORA-2021-7b8b65bc7a)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 34 Update: rubygem-pry-0.13.1-5.fc34
Pry is a runtime developer console and IRB alternative with powerful introspection capabilities. Pry aims to be more than an IRB replacement. It is an attempt to bring REPL driven programming to the Ruby language...
Man-in-the-Middle (MitM)
pry-rescue is vulnerable to man-in-the-middle MitM attacks. The vulnerability exists due to the use of the deprecated :rubygems option in the Gemfile, causing insecure HTTP requests to be made. A malicious user can potentially compromise the download to conduct MitM attacks...
Chainfire's Pry-Fi Android App released to defend against NSA Spying under Public Wi-Fi
Turn your face in any direction, someone is always trying to spy on you; doesn’t matter who and what you are? Just yesterday we reported that Communications Security Establishment Canada CSEC in Canada and NSA are together, running a spying program called 'game-changer'. It was revealed that the...