encoded_id-rails versions prior to 1.0.0.beta2 are affected by an uncontrolled resource consumption vulnerability. A remote and unauthenticated attacker might cause a denial of service condition by sending an HTTP request with an extremely long "id" parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
diaconou encodedid\\ \\ |