3.5.0

DATE	CVE	VULNERABILITY TITLE	RISK
2019-09-30	CVE-2019-16676	Improper Input Validation vulnerability in Plataformatec Simple Form Plataformatec Simple Form has Incorrect Access Control in file_method? in lib/simple_form/form_builder.rb, because a user-supplied string is invoked as a method call. network low complexity plataformatec CWE-20	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.