A flaw was found in rubygem-actionpack. Untrusted hashes of data is possible for values of each
, each_value
, and each_pair
which can lead to cases of user supplied information being leaked from Strong Parameters. Applications that use these hashes may inadvertently use untrusted user input. The highest risk from this vulnerability is to data confidentiality.