VYPR

RubyGems package

recurly

pkg:gem/recurly

Vulnerabilities (1)

  • CVE-2017-0905CriNov 13, 2017
    affected >= 2.3.0, < 2.3.10fixed 2.3.10

    The Recurly Client Ruby Library before 2.0.13, 2.1.11, 2.2.5, 2.3.10, 2.4.11, 2.5.4, 2.6.3, 2.7.8, 2.8.2, 2.9.2, 2.10.4, 2.11.3 is vulnerable to a Server-Side Request Forgery vulnerability in the "Resource#find" method that could result in compromise of API keys or other critical