2 matches found
EUVD-2017-0276
Malware in sbrugna...
Internet Bug Bounty: [CVE-2024-54133] Possible Content Security Policy bypass in Action Dispatch
A vulnerability was discovered in the contentsecuritypolicy helper in Action Pack of Ruby on Rails. Carefully crafted inputs were able to inject new directives into the Content-Security-Policy CSP header, potentially leading to a bypass of the CSP and its protection against cross-site scripting X...