Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2015-1840

UNKNOWN
Published 2015-07-26T22:00:00
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2015-1840. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and rails.js in jquery-ujs before 1.0.4, as used with Ruby on Rails 3.x and 4.x, allow remote attackers to bypass the Same Origin Policy, and trigger transmission of a CSRF token to a different-domain web server, via a leading space character in a URL within an attribute value.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed MODERATE

jquery-rails and jquery-ujs subject to Exposure of Sensitive Information

GHSA-4whc-pp4x-9pf3

Advisory Details

jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and rails.js in jquery-ujs before 1.0.4, as used with Ruby on Rails 3.x and 4.x, allow remote attackers to bypass the Same Origin Policy, and trigger transmission of a CSRF token to a different-domain web server, via a leading space character in a URL within an attribute value.

Affected Packages

RubyGems jquery-rails
ECOSYSTEM: ≥0 <3.1.3
RubyGems jquery-rails
ECOSYSTEM: ≥4.0.0 <4.0.4
RubyGems jquery-ujs
ECOSYSTEM: ≥0 <1.0.4

CVSS Scoring

CVSS Score

5.0

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2015-1840
ADVISORY https://github.com/advisories/GHSA-4whc-pp4x-9pf3
PACKAGE https://github.com/rails/jquery-rails
WEB https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md
WEB https://github.com/rails/jquery-ujs/blob/master/CHANGELOG.md
WEB https://github.com/rubysec/ruby-advisory-db/blob/master/gems/jquery-ujs/CVE-2015-1840.yml
WEB https://groups.google.com/forum/#!topic/ruby-security-ann/XIZPbobuwaY
WEB https://groups.google.com/forum/message/raw?msg=rubyonrails-security/XIZPbobuwaY/fqnzzpuOlA4J
WEB https://web.archive.org/web/20200228084945/http://www.securityfocus.com/bid/75239
WEB http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160906.html
WEB http://lists.fedoraproject.org/pipermail/package-announce/2015-June/161043.html
WEB http://lists.opensuse.org/opensuse-updates/2015-07/msg00041.html
WEB http://openwall.com/lists/oss-security/2015/06/16/15

Advisory provided by GitHub Security Advisory Database. Published: October 24, 2017, Modified: January 20, 2023

References

http://lists.fedoraproject.org/pipermail/package-announce/2015-June/161043.html
http://lists.opensuse.org/opensuse-updates/2015-07/msg00041.html
http://openwall.com/lists/oss-security/2015/06/16/15
http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160906.html
https://groups.google.com/forum/message/raw?msg=rubyonrails-security/XIZPbobuwaY/fqnzzpuOlA4J
http://www.securityfocus.com/bid/75239
https://github.com/rails/jquery-ujs/blob/master/CHANGELOG.md
https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md

HackerOne Reports

CSRF header is sent to external websites when using data-remote forms Low
mastahyeti
Ruby on Rails
Cross-Site Request Forgery (CSRF)
View Report
Published: 2015-07-26T22:00:00
Last Modified: 2024-08-06T04:54:16.349Z
Copied to clipboard!