CVE-2007-3227

Rails < 1.2.5 - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in the to_json (ActiveRecord::Base#to_json) function in Ruby on Rails before edge 9606 allows remote attackers to inject arbitrary web script via the input values.

Exploits (1)

exploitdb WRITEUP VERIFIED

by BCC · textremotelinux

https://www.exploit-db.com/exploits/30089

View Code ZIP pw:eip

References (13)

[Issue Tracking] http://bugs.gentoo.org/show_bug.cgi?id=195315

[Various Sources] http://dev.rubyonrails.org/ticket/8371

[Various Sources] http://pastie.caboo.se/65550.txt

[Vendor Advisory] http://secunia.com/advisories/25699

[Vendor Advisory] http://secunia.com/advisories/27657

[Vendor Advisory] http://secunia.com/advisories/27756

[Various Sources] http://weblog.rubyonrails.org/2007/10/12/rails-1-2-5-maintenance-release

[Various Sources] http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release

[Exploit] http://www.securityfocus.com/bid/24161

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/2216

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2007_24_sr.html

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-200711-17.xml

[Third Party Advisory, VDB Entry] http://osvdb.org/36378

Scores

EPSS 0.1363

EPSS Percentile 94.1%

Classification

CWE

CWE-79

Status draft

Affected Products (2)

rubyonrails/rails

rubygems/rails < 1.2.5RubyGems

Timeline

Published Jun 14, 2007

Tracked Since Feb 18, 2026