Lucas Amorim - Security Researcher - Exploit Intelligence Platform

CVE-2020-8163 NOMISEC HIGH WORKING POC

Rails < 5.0.1 - Remote Code Execution via Render Locals Argument

The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the `locals` argument of a `render` call to perform a RCE.

61 stars

CVSS 8.8

View Code

CVE-2020-8163 INTHEWILD HIGH WORKING POC

Rails < 5.0.1 - Remote Code Execution via Render Locals Argument

The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the `locals` argument of a `render` call to perform a RCE.

CVSS 8.8

View Code

CVE-2020-8163 EXPLOITDB HIGH ruby WORKING POC

Rails < 5.0.1 - Remote Code Execution via Render Locals Argument

The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the `locals` argument of a `render` call to perform a RCE.

CVSS 8.8

View Code

EIP-2026-105684 EXPLOITDB ruby WORKING POC

Cacti v1.2.8 - Unauthenticated Remote Code Execution (Metasploit)

View Code