Launchpad.net

CVE 2007-3227

Cross-site scripting (XSS) vulnerability in the to_json (ActiveRecord::Base#to_json) function in Ruby on Rails before edge 9606 allows remote attackers to inject arbitrary web script via the input values.

Related bugs and status

CVE-2007-3227 (Candidate) is related to these bugs:

Bug #151078: Please sync rails 1.2.4-1 from Debian unstable (main)

Summary				In	Importance	Status
	151078	Please sync rails 1.2.4-1 from Debian unstable (main)		rails (Ubuntu)	Undecided	Fix Released
	151078	Please sync rails 1.2.4-1 from Debian unstable (main)		rails (Ubuntu Feisty)	Medium	Won't Fix

Bug #163832: [rails] Several vulnerabilities allowing for file disclosure and theft of user credentials

		In	Importance	Status
163832	[rails] Several vulnerabilities allowing for file disclosure and theft of user credentials	rails (Ubuntu)	Undecided	Fix Released
163832	[rails] Several vulnerabilities allowing for file disclosure and theft of user credentials	rails (Ubuntu Dapper)	Undecided	Won't Fix
163832	[rails] Several vulnerabilities allowing for file disclosure and theft of user credentials	rails (Ubuntu Edgy)	Undecided	Won't Fix
163832	[rails] Several vulnerabilities allowing for file disclosure and theft of user credentials	rails (Ubuntu Feisty)	Undecided	Won't Fix
163832	[rails] Several vulnerabilities allowing for file disclosure and theft of user credentials	rails (Ubuntu Gutsy)	Undecided	Won't Fix

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://dev.rubyonrails...
CONFIRM: http://pastie.caboo.se...
BID: 24161
SECUNIA: 25699
CONFIRM: http://weblog.rubyonra...
CONFIRM: http://weblog.rubyonra...
CONFIRM: http://bugs.gentoo.org...
GENTOO: GLSA-200711-17
SECUNIA: 27657
SUSE: SUSE-SR:2007:024
SECUNIA: 27756
VUPEN: ADV-2007-2216
OSVDB: 36378