CVE-2017-0905
- Source
- https://cve.org/CVERecord?id=CVE-2017-0905
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-0905.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-0905
- Aliases
- Published
- 2017-11-13T17:29:00.427Z
- Modified
- 2026-04-10T03:56:03.460343Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The Recurly Client Ruby Library before 2.0.13, 2.1.11, 2.2.5, 2.3.10, 2.4.11, 2.5.4, 2.6.3, 2.7.8, 2.8.2, 2.9.2, 2.10.4, 2.11.3 is vulnerable to a Server-Side Request Forgery vulnerability in the "Resource#find" method that could result in compromise of API keys or other critical resources.
- References
Affected packages
Git / github.com/recurly/recurly-client-ruby
Affected ranges
- Type
- GIT
- Repo
- https://github.com/recurly/recurly-client-ruby
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedFixed
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "2.0.0" }, { "introduced": "0" }, { "last_affected": "2.0.1" }, { "introduced": "0" }, { "last_affected": "2.0.2" }, { "introduced": "0" }, { "last_affected": "2.0.3" }, { "introduced": "0" }, { "last_affected": "2.0.4" }, { "introduced": "0" }, { "last_affected": "2.0.5" }, { "introduced": "0" }, { "last_affected": "2.0.6" }, { "introduced": "0" }, { "last_affected": "2.0.7" }, { "introduced": "0" }, { "last_affected": "2.0.8" }, { "introduced": "0" }, { "last_affected": "2.0.9" }, { "introduced": "0" }, { "last_affected": "2.0.10" }, { "introduced": "0" }, { "last_affected": "2.0.11" }, { "introduced": "0" }, { "last_affected": "2.0.12" }, { "introduced": "0" }, { "last_affected": "2.1.0" }, { "introduced": "0" }, { "last_affected": "2.1.0-c" }, { "introduced": "0" }, { "last_affected": "2.1.1" }, { "introduced": "0" }, { "last_affected": "2.1.2" }, { "introduced": "0" }, { "last_affected": "2.1.3" }, { "introduced": "0" }, { "last_affected": "2.1.4" }, { "introduced": "0" }, { "last_affected": "2.1.5" }, { "introduced": "0" }, { "last_affected": "2.1.6" }, { "introduced": "0" }, { "last_affected": "2.1.7" }, { "introduced": "0" }, { "last_affected": "2.1.8" }, { "introduced": "0" }, { "last_affected": "2.1.9" }, { "introduced": "0" }, { "last_affected": "2.1.10" }, { "introduced": "0" }, { "last_affected": "2.2.0" }, { "introduced": "0" }, { "last_affected": "2.2.1" }, { "introduced": "0" }, { "last_affected": "2.2.2" }, { "introduced": "0" }, { "last_affected": "2.2.3" }, { "introduced": "0" }, { "last_affected": "2.2.4" }, { "introduced": "0" }, { "last_affected": "2.3.0" }, { "introduced": "0" }, { "last_affected": "2.3.0-beta1" }, { "introduced": "0" }, { "last_affected": "2.3.1" }, { "introduced": "0" }, { "last_affected": "2.3.2" }, { "introduced": "0" }, { "last_affected": "2.3.3" }, { "introduced": "0" }, { "last_affected": "2.3.4" }, { "introduced": "0" }, { "last_affected": "2.3.5" }, { "introduced": "0" }, { "last_affected": "2.3.6" }, { "introduced": "0" }, { "last_affected": "2.3.7" }, { "introduced": "0" }, { "last_affected": "2.3.8" }, { "introduced": "0" }, { "last_affected": "2.3.9" }, { "introduced": "0" }, { "last_affected": "2.4.0" }, { "introduced": "0" }, { "last_affected": "2.4.1" }, { "introduced": "0" }, { "last_affected": "2.4.2" }, { "introduced": "0" }, { "last_affected": "2.4.3" }, { "introduced": "0" }, { "last_affected": "2.4.4" }, { "introduced": "0" }, { "last_affected": "2.4.5" }, { "introduced": "0" }, { "last_affected": "2.4.6" }, { "introduced": "0" }, { "last_affected": "2.4.7" }, { "introduced": "0" }, { "last_affected": "2.4.8" }, { "introduced": "0" }, { "last_affected": "2.4.9" }, { "introduced": "0" }, { "last_affected": "2.4.10" }, { "introduced": "0" }, { "last_affected": "2.5.0" }, { "introduced": "0" }, { "last_affected": "2.5.1" }, { "introduced": "0" }, { "last_affected": "2.5.2" }, { "introduced": "0" }, { "last_affected": "2.5.3" }, { "introduced": "0" }, { "last_affected": "2.6.0" }, { "introduced": "0" }, { "last_affected": "2.6.1" }, { "introduced": "0" }, { "last_affected": "2.6.2" }, { "introduced": "0" }, { "last_affected": "2.7.1" }, { "introduced": "0" }, { "last_affected": "2.7.2" }, { "introduced": "0" }, { "last_affected": "2.7.3" }, { "introduced": "0" }, { "last_affected": "2.7.4" }, { "introduced": "0" }, { "last_affected": "2.7.5" }, { "introduced": "0" }, { "last_affected": "2.7.6" }, { "introduced": "0" }, { "last_affected": "2.7.7" }, { "introduced": "0" }, { "last_affected": "2.8.0" }, { "introduced": "0" }, { "last_affected": "2.8.0-rc1" }, { "introduced": "0" }, { "last_affected": "2.8.0-rc3" }, { "introduced": "0" }, { "last_affected": "2.8.1" }, { "introduced": "0" }, { "last_affected": "2.9.0" }, { "introduced": "0" }, { "last_affected": "2.9.1" }, { "introduced": "0" }, { "last_affected": "2.10.0" }, { "introduced": "0" }, { "last_affected": "2.10.1" }, { "introduced": "0" }, { "last_affected": "2.10.2" }, { "introduced": "0" }, { "last_affected": "2.10.3" }, { "introduced": "0" }, { "last_affected": "2.11.0" }, { "introduced": "0" }, { "last_affected": "2.11.1" }, { "introduced": "0" }, { "last_affected": "2.11.2" } ] }
Affected versions
2.*
2.0.0
2.0.1
2.0.10
2.0.11
2.0.12
2.0.2
2.0.3
2.0.4
2.0.5
2.0.6
2.0.7
2.0.8
2.0.9
2.1.0
2.1.0c
2.1.1
2.1.10
2.1.2
2.1.3
2.1.4
2.1.5
2.1.6
2.1.7
2.1.8
2.1.9
2.10.0
2.10.1
2.10.2
2.10.3
2.11.0
2.11.1
2.11.2
2.2.0
2.2.1
2.2.2
2.2.3
2.2.4
2.3.0
2.3.0.beta1
2.3.1
2.3.2
2.3.3
2.3.4
2.3.5
2.3.6
2.3.7
2.3.8
2.3.9
2.4.0
2.4.1
2.4.10
2.4.2
2.4.3
2.4.4
2.4.5
2.4.6
2.4.7
2.4.8
2.4.9
2.5.0
2.5.1
2.5.2
2.5.3
2.6.0
2.6.1
2.6.2
2.7.1
2.7.2
2.7.3
2.7.4
2.7.5
2.7.6
2.7.7
2.8.0
2.8.0.rc1
2.8.0.rc3
2.8.1
2.9.0
2.9.1
v2.*
v2.3.4
v2.4.6
v2.6.0
v2.6.1
v2.7.3