Exploit for #VU28242 Code Injection in ActionView
Vulnerability identifier: #VU28242
Vulnerability risk: High
CVSSv3.1: 8.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-94
Exploitation vector: Network
Exploits in database: 4
- July 1, 2021
- June 17, 2021
- Rails 5.0.1 - Remote Code Execution [Exploit-DB]
- July 20, 2020
- July 15, 2020
Impact: Code execution
Vulnerable software:
ActionView
Server applications /
Frameworks for developing and running applications
Vendor: Rails
