Description
CRLF injection vulnerability in Ruby on Rails before 2.0.5 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL to the redirect_to function.
Remediation
References
Related Vulnerabilities
Craft CMS CVE-2024-21622 Vulnerability (CVE-2024-21622)
MySQL CVE-2015-4861 Vulnerability (CVE-2015-4861)
WordPress Plugin UserPro-Community and User Profile Privilege Escalation (4.9.20)
MySQL CVE-2014-6491 Vulnerability (CVE-2014-6491)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-7525)