CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Github Security Blog•added 2019/09/30 7:41 p.m.•27 views

Improper Input Validation in simple_form

Incorrect Access Control in filemethod? in lib/simpleform/formbuilder.rb; a user-supplied string is invoked as a method call Impact For pages that build a form using user input, it is possible for an attacker to manipulate the input and send any method present in the form object. For example: erb...

9.8CVSS0.6AI score0.0083EPSS

Exploits1References7Affected Software1

UbuntuCve•added 2019/09/30 12:15 p.m.•15 views

CVE-2019-16676

Plataformatec Simple Form has Incorrect Access Control in filemethod? in lib/simpleform/formbuilder.rb, because a user-supplied string is invoked as a method call...

9.8CVSS7.2AI score0.0083EPSS

Exploits1References4

Prion•added 2019/09/30 12:15 p.m.•10 views

Design/Logic Flaw

Plataformatec Simple Form has Incorrect Access Control in filemethod? in lib/simpleform/formbuilder.rb, because a user-supplied string is invoked as a method call...

7.5CVSS9.4AI score0.0083EPSS

Exploits1References3Affected Software1

Cvelist•added 2019/09/30 11:43 a.m.•13 views

CVE-2019-16676

Plataformatec Simple Form has Incorrect Access Control in filemethod? in lib/simpleform/formbuilder.rb, because a user-supplied string is invoked as a method call...

9.5AI score0.0083EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by