Vulnerabilities > Omniauth Oauth2 Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-04-09 | CVE-2012-6134 | Cross-Site Request Forgery (CSRF) vulnerability in Omniauth-Oauth2 Project Omniauth-Oauth2 Cross-site request forgery (CSRF) vulnerability in the omniauth-oauth2 gem 1.1.1 and earlier for Ruby allows remote attackers to hijack the authentication of users for requests that modify session state. | 6.8 |