CVE

CVE-2021-22885

admin

CVE-2021-22885

A possible information disclosure / unintended method execution vulnerability in Action Pack >= 2.0.0 when using the `redirect_to` or `polymorphic_url`helper with untrusted user input.

Source: CVE-2021-22885

Exit mobile version