Cross-site request forgery In devise_invitable
This advisory was classified as a False Positive during our data review process to ensure accuracy and data quality.
Description
Cross-Site Request Forgery (CSRF)
Withdrawn
Affected versions of the package are vulnerable to Cross-Site Request Forgery (CSRF) attacks.
Mitigation
Update Impact
Minimal update. May introduce new vulnerabilities or breaking changes.
Ecosystem | Package | Affected version | Patched versions |
|---|---|---|---|
 rubygems | 1.3.5 |
Aliases
1.
References
1. 2. 3.