ruby-advisory-db icon indicating copy to clipboard operation
ruby-advisory-db copied to clipboard

Published 20 hours ago verified publisher icon rubysec

Add advisory for will_paginate

Open aripollak opened this issue 8 years ago • 3 comments

Apparently there was a security issue fixed here: https://github.com/mislav/will_paginate/commit/ec9b9851901f8b74adc945302c0520320aaa7ead and here: https://github.com/mislav/will_paginate/commit/ab55687acae11af4274bdf1664481314524d91f6

It looks like versions before 3.1.2, 3.0.9, and are vulnerable, but this has no CVE and I'm not sure exactly what the vulnerability was.

aripollak avatar Oct 28 '16 19:10 aripollak

With a bit of experimentation, I discovered that adding &script_name=https://www.example.com to a page with will_paginate links would result in the links being rewritten to be https://www.example.com... instead of the intended site. I guess someone could use this in a social engineering attack by sending someone a link with &script_name being a malicious site and hoping they click on the pagination links and getting fooled, but I'm not sure if it's any worse than that.

aripollak avatar Oct 28 '16 19:10 aripollak

@aripollak or @phillmv - Is this issue related to this existing advisory - gems/will_paginate/CVE-2013-6459.yml ? Thanks

jasnow avatar Jun 03 '23 15:06 jasnow

@jasnow I think that's a different issue.

aripollak avatar Jun 03 '23 16:06 aripollak