[https://shipit-sox-staging.shopifycloud.com] Presence of multiple vulnerabilities present in Ruby On Rails

Disclosed: 2022-04-16 17:19:48 By beastglatisant To shopify

None

Vulnerability Details

https://shipit-sox-staging.shopifycloud.com seems to be running 6.0.0 < rails < 6.0.3.2 which is prone to multiple vulnerabilities via csrf including open redirect, xss & rce as reported at https://hackerone.com/reports/904059 ## Impact presence of multiple vulnerabilities can cause wide variety of damage.

Actions

View on HackerOne

Report Stats

Report ID: 1400309
State: Closed
Substate: resolved
Upvotes: 13

[https://shipit-sox-staging.shopifycloud.com] Presence of multiple vulnerabilities present in Ruby On Rails

Vulnerability Details

Actions

Report Stats

Share this report