CVE-2011-2197

Ruby on Rails <2.3.12, <3.0.8, <3.1.0.rc2 - XSS

Title source: llm

Description

The cross-site scripting (XSS) prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a problematic string method, as demonstrated by the sub method.

References (7)

[Patch] http://groups.google.com/group/rubyonrails-security/msg/663b600d4471e0d4?dmode=source&output=gplain

[Patch] http://openwall.com/lists/oss-security/2011/06/09/2

[Patch] http://openwall.com/lists/oss-security/2011/06/13/9

[Vendor Advisory] http://secunia.com/advisories/44789

[Patch] http://weblog.rubyonrails.org/2011/6/8/potential-xss-vulnerability-in-ruby-on-rails-applications

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062514.html

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2011-June/062090.html

Scores

EPSS 0.0044

EPSS Percentile 63.0%

Classification

CWE

CWE-79

Status published

Affected Products (50)

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

rubyonrails/rails

... and 35 more

Timeline

Published Jun 30, 2011

Tracked Since Feb 18, 2026