RubyFlow The Ruby and Rails community linklog


The Ruby and Rails community linklog

Made a library? Written a blog post? Found a useful tutorial? Share it with the Ruby community here or just enjoy what everyone else has found!

Rails PoC exploits for CVE-2013-0156 and CVE-2013-0155

I finished developing Proof-of-Concept (PoC) exploits for Rails vulnerabilities CVE-2013-0156 and CVE-2013-0155. Read the write up or read the exploits: rails_dos.rb, rails_jsonq.rb, rails_sqli.rb, rails_rce.rb. If you haven’t already upgraded Rails, DO IT NOW!

Post a comment

You can use basic HTML markup (e.g. <a>) or Markdown.

As you are not logged in, you will be
directed via GitHub to signup or sign in