More on the Execution After Redirect Vulnerability

Last night Adam Doupé wrote up his description on our Execution After Redirect Vulnerability which I wanted to link my followers to. Adam’s primary focus on this project has been adapting a static ruby analyzer to find instances of the EAR vulnerability in thousands of Ruby-On-Rails projects from github …

more ...