Rails 2ç³»ã®XSSèå¼±æ§ãä¿®æ£ããããããå æ¥å ¬éããã¾ããã 4æ¥(ç±³å½æé)ãRuby on Railsã®2ç³»ãã¹ã¦ã®ãã¼ã¸ã§ã³ã«XSSã®èå¼±æ§ããããã¨ãRiding Rails: XSS Vulnerability in Ruby on Railsã«ããã¦çºè¡¨ããããç¹å®ã®Unicodeæååã使ã£ã¦ãã§ãã¯ããããæããä»»æã®HTMLãéãè¾¼ã¾ããå±éºæ§ãããããªãRuby 1.9ç³»ã§åä½ãã¦ããã¢ããªã±ã¼ã·ã§ã³ã¯ãã®å½±é¿ãåããªãã http://journal.mycom.co.jp/news/2009/09/07/048/index.html ãã®ä»¶ã«é¢ãã¦ã大å£ããã¯æ¬¡ã®ããã«èª¬æãã¦ãã¾ãã RoRã®èå¼±æ§ã«é¢é£ãã¦Ruby1.9ã§ã¯å®å ¨ãã¨è§£èª¬ããã¦ãã¾ãããããã¯Ruby1.9ã¯ä¸æ£ãªæåã¨ã³ã³ã¼ãã£ã³ã°ãåãä»ããªãããã§ãã ä½æ ããããåã«ãªããªãæåã¨
{{#tags}}- {{label}}
{{/tags}}