RubyGems package
omniauth-oauth2
pkg:gem/omniauth-oauth2
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2012-6134 | — | < 1.1.1 | 1.1.1 | Apr 9, 2013 | Cross-site request forgery (CSRF) vulnerability in the omniauth-oauth2 gem 1.1.1 and earlier for Ruby allows remote attackers to hijack the authentication of users for requests that modify session state. |
- CVE-2012-6134Apr 9, 2013affected < 1.1.1fixed 1.1.1
Cross-site request forgery (CSRF) vulnerability in the omniauth-oauth2 gem 1.1.1 and earlier for Ruby allows remote attackers to hijack the authentication of users for requests that modify session state.