AI Score
Confidence
Low
EPSS
Percentile
82.0%
A possible information disclosure / unintended method execution vulnerability in Action Pack >= 2.0.0 when using the redirect_to or polymorphic_urlhelper with untrusted user input.
redirect_to
polymorphic_url
hackerone.com/reports/1106652
security.netapp.com/advisory/ntap-20210805-0009/
www.debian.org/security/2021/dsa-4929