| Revision Date: | 2012-11-01 | Version: | 1 | | Title: | CVE-2007-3227 | | Description: |
Cross-site scripting (XSS) vulnerability in the to_json (ActiveRecord::Base#to_json) function in Ruby on Rails before edge 9606 allows remote attackers to inject arbitrary web script via the input values.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2007-3227
| | Platform(s): | openSUSE 10.2
openSUSE 10.3
| Product(s): | | | Definition Synopsis | | suse103 is installed AND rubygem-activesupport less than 1.4.2-20.2
|
|