The Rack::Cache rubygem 0.3.0 up to and including 1.1 caches Set-Cookie and other sensitive headers, which allows malicious users to obtain sensitive cookie information, hijack web sessions, or have other unspecified impact by accessing the cache.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rtomayko rack-cach 0.5.3 |
||
rtomayko rack-cach 1.0 |
||
rtomayko rack-cach 0.3.0 |
||
rtomayko rack-cach 0.4 |
||
rtomayko rack-cach 1.0.3 |
||
rtomayko rack-cach 1.1 |
||
rtomayko rack-cach 1.0.1 |
||
rtomayko rack-cach 1.0.2 |
||
rtomayko rack-cach 0.5 |
||
rtomayko rack-cach 0.5.2 |