VDB

H1-1955370

H1-1955370 PUBLISHED CVSS 4.300000190734863 MEDIUM

Incorrect handling of certain characters passed to the redirection functionality in Rails can lead to a single-click XSS vulnerability.

Risk Scores

CVSS 3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Timeline

  • Jul 28, 2023 CVE Published
  • Jul 28, 2023 PoC Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›