Juvia uses the same secret key for all installations, which allows remote malicious users to have unspecified impact by leveraging the secret key in app/config/initializers/secret_token.rb, related to cookies.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phusion juvia - |