Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Recurly Client Ruby Library before 2.0.13, 2.1.11, 2.2.5, 2.3.10, 2.4.11, 2.5.4, 2.6.3, 2.7.8, 2.8.2, 2.9.2, 2.10.4, 2.11.3 is vulnerable to a Server-Side Request Forgery vulnerability in the "Resource#find" method that could result in compromise of API keys or other critical resources.
CVSS Information
N/A
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
Recurly Client Ruby Library 安全漏洞
Vulnerability Description
Recurly Client Ruby Library是美国Recurly公司的一款用于Recurly的Ruby API封装器。 Recurly Client Ruby Library中的Resource#find方法存在服务器端请求伪造漏洞。攻击者可利用该漏洞控制API密钥或其他重要资源。以下版本受到影响:Recurly Client Ruby Library 2.0.13之前的版本,2.1.11之前的版本,2.2.5之前的版本,2.3.10之前的版本,2.4.11之前的版本,2.5.4之前的版本,2.
CVSS Information
N/A
Vulnerability Type
N/A