CVE-2018-16476



A Broken Access Control vulnerability in Active Job versions >= 4.2.0 allows an attacker to craft user input which can cause Active Job to deserialize it using GlobalId and give them access to information that they should not have.

Don't forget to share

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *