VYPR

RubyGems package

omniauth-oauth2

pkg:gem/omniauth-oauth2

Vulnerabilities (1)

  • CVE-2012-6134Apr 9, 2013
    affected < 1.1.1fixed 1.1.1

    Cross-site request forgery (CSRF) vulnerability in the omniauth-oauth2 gem 1.1.1 and earlier for Ruby allows remote attackers to hijack the authentication of users for requests that modify session state.