Vulnerabilities (CVE)

Filtered by vendor Plataformatec Subscribe

Filtered by product Simple Form

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-16676	1 Plataformatec	1 Simple Form	2024-02-28	7.5 HIGH	9.8 CRITICAL
Plataformatec Simple Form has Incorrect Access Control in file_method? in lib/simple_form/form_builder.rb, because a user-supplied string is invoked as a method call.