Post Tue Dec 03, 2013 12:12 pm

Rails Cookie Issue

I found this vulnerability on a client's site in July:

http://thehackernews.com/2013/11/thousands-of-websites-based-on-ruby-on_29.html?goback=.gde_100569_member_5812202224058654721#!

I didn't realize that it was a huge deal and that I should've blogged or done a demo about it. Oh well, at least I found it first!