CVE-2017-1000248

Published November 17th, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.5

HIGH

Affected

1

PROJECT

Description

Redis-store <=v1.3.0 allows unsafe objects to be loaded from redis

redis-store/redis-store

Namespaced Rack::Session, Rack::Cache, I18n and cache Redis stores for Ruby web frameworks

GitHub

1.5K