RSS   Vulnerabilities for 'Juvia'   RSS

2014-04-29
 
CVE-2013-7134

CWE-255
 

 
Juvia uses the same secret key for all installations, which allows remote attackers to have unspecified impact by leveraging the secret key in app/config/initializers/secret_token.rb, related to cookies.

 

 >>> Vendor: Phusion 2 Products
Passenger
Juvia


Copyright 2018, cxsecurity.com

 

Back to Top