picatz/falconz

httpparty vulnerability

Closed this issue · 0 comments

jonnynux commented

Bundler Audit found the following vulnerability:

Name: httparty
Version: 0.18.1
GHSA: GHSA-5pq7-52mg-hr42
Criticality: Medium
URL: https://github.com/jnunemaker/httparty/security/advisories/GHSA-5pq7-52mg-hr42
Title: httparty has multipart/form-data request tampering vulnerability
Solution: upgrade to '>= 0.21.0'

I'll try to make a PR about.