Skip to content
Warning
: Trying to access array offset on value of type null in
/home/bugbount/public_html/wp-content/plugins/citadela-pro/plugin/Custom_Header/Feature.php
on line
309
BugBountyBlog.com
Let's see what this Bug Bounty thing is all about
Home
Blog
Bug Bounty Resources
Bug Bounty Tips
Bug Bounty Recon
Bug Bounty Dorks
Bug Bounty News Feed
Contact
Argument/Code Injection via ActiveStorage’s image transformation functionality
Posted on
July 29, 2023
by
bugbounty
Ruby on Rails disclosed a bug submitted by gquadros_: https://hackerone.com/reports/1154034
[
Source
]
Post navigation
ReDoS in Rack::Multipart
Content Security Policy is only active for HTML responses but not for image/svg+xml