Action Pack
Approved changes feed: RSS · Atom
cpe:2.3:a:rails:action_pack:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Rails (c2f75d8c-3de5-5ca8-bae8-6b2589edf586) |
|---|---|
| Product | Action Pack (b8243c37-ba23-5f51-8acc-88a499863de8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-28362 |
vulnerable | 2026-06-08 06:01:10.560224 |
Details available
The redirect_to method in Rails allows provided values to contain characters which are not legal in an HTTP header value. This results in the potential for downstream services which enforce RFC compliance on HTTP response headers to remove the assigned Location header.
Published: 2025-01-09T00:33:47.730Z
Updated: 2025-05-02T23:02:56.188Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.