There is a possible XSS vulnerability in Rack before 2.0.6 and 1.6.11. Carefully crafted requests can impact the data returned by the `scheme` method on `Rack::Request`. Applications that expect the scheme to be limited to 'http' or 'https' and do not escape the return value could be vulnerable to an XSS attack. Note that applications using the normal escaping mechanisms provided by Rails may not impacted, but applications that bypass the escaping mechanisms, or do not use them may be vulnerable.
References
Configurations
History
21 Nov 2024, 03:52
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00032.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00016.html - | |
References | () https://groups.google.com/forum/#%21topic/rubyonrails-security/GKsAFT924Ag - | |
References | () https://lists.debian.org/debian-lts-announce/2018/11/msg00022.html - Mailing List, Third Party Advisory | |
References | () https://usn.ubuntu.com/4089-1/ - |
07 Nov 2023, 02:53
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2018-11-13 23:29
Updated : 2024-11-21 03:52
NVD link : CVE-2018-16471
Mitre link : CVE-2018-16471
CVE.ORG link : CVE-2018-16471
JSON object : View
Products Affected
debian
- debian_linux
rack_project
- rack
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')