CVE-2020-16253 (pghero)

CVE-2020-16253 (pghero)

The PgHero gem through 2.6.0 for Ruby allows CSRF.

Source: CVE-2020-16253 (pghero)