recurly/recurly-client-ruby

recurly/recurly-client-ruby

GitHubGitHub
GitHubgithub.com
developers.recurly.comdevelopers.recurly.com
Releases345
Frequency2 weeks 2 days
Last Release
Stars182
A Ruby API wrapper for Recurly
Log in to subscribe

CVE History

CVEPublishedCVSS v3CVSS v2
CVE-2017-0905
7.5 HIGH

The Recurly Client Ruby Library before 2.0.13, 2.1.11, 2.2.5, 2.3.10, 2.4.11, 2.5.4, 2.6.3, 2.7.8, 2.8.2, 2.9.2, 2.10.4, 2.11.3 is vulnerable to a Server-Side Request Forgery vulnerability in the "Resource#find" method that could result in compromise of API keys or other critical resources.