RSS   Vulnerabilities for 'Devise'   RSS

2023-12-12
 
CVE-2015-8314

CWE-312
 

 
The Devise gem before 3.5.4 for Ruby mishandles Remember Me cookies for sessions, which may allow an adversary to obtain unauthorized persistent application access.

 


Copyright 2024, cxsecurity.com

 

Back to Top