Red Hat Security Advisory 2013-0698-01 - Ruby on Rails is a model–view–controller framework for web application development. Action Pack implements the controller and the view components. Two cross-site scripting flaws were found in rubygem-actionpack and ruby193-rubygem-actionpack. A remote attacker could use these flaws to conduct XSS attacks against users of an application using rubygem-actionpack or ruby193-rubygem-actionpack.
743a41b0704bd4dba9f8cb3988806f1e991875ad4a177217c9ca713b7d10655b