loading...

CVE-2020-10187

stefansundin profile image Stefan Sundin ・1 min read

About two months ago, I found a CVE in a Ruby gem called Doorkeeper, and today the details were finally made public.

I found a couple of companies that were vulnerable in the wild, so it took some time to contact them and wait for them to patch their websites before the vulnerability was made public. I also worked with the gem maintainer to release a patch.

It's my first ever CVE, so I'm pretty proud of it.

Links:

Discussion

pic
Editor guide
Collapse
rhymes profile image
rhymes

Thank you very much Stefan! Your CVE is deeply appreciated :-)

Collapse
cryptomance profile image
cryptomance

Thanks for your contribution to a safer world!

Collapse
mrofisr profile image
Muhammad Abdur Rofi

that's good