Ruby on Rails, Third Security Patch in Under a Month
Ruby on Rails has release patches this week for v.3.0.20 and v.2.3.16 of the popular web framework software in order to fix a critical remote code execution vulnerability that has been recently discovered. This brings the vulnerability patch count for ROR up to three already in a month. Rails developer are describing this new update as Extremely Critical and as such, have recommended all webmasters using the framework, versions 3.0.x and 2.3.x to update their installs ASAP or risk the consequences which include attackers with the ability to bypass authentication systems and insert SQL commands into applications. Read the full story here.